Skip to main content

Harman Infotainment

3 CVEs product

Monthly

CVE-2023-40293 MEDIUM POC This Month

Harman Infotainment 20190525031613 and later allows command injection via unauthenticated RPC with a D-Bus connection object. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Harman Infotainment
NVD
CVSS 3.1
6.8
EPSS
1.7%
CVE-2023-40292 MEDIUM POC This Month

Harman Infotainment 20190525031613 and later discloses the IP address via CarPlay CTRL packets. Rated medium severity (CVSS 4.3), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Harman Infotainment
NVD
CVSS 3.1
4.3
EPSS
0.4%
CVE-2023-40291 MEDIUM POC This Month

Harman Infotainment 20190525031613 allows root access via SSH over a USB-to-Ethernet dongle with a password that is an internal project name. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Harman Infotainment
NVD
CVSS 3.1
6.8
EPSS
0.4%
EPSS 2% CVSS 6.8
MEDIUM POC This Month

Harman Infotainment 20190525031613 and later allows command injection via unauthenticated RPC with a D-Bus connection object. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Harman Infotainment
NVD
EPSS 0% CVSS 4.3
MEDIUM POC This Month

Harman Infotainment 20190525031613 and later discloses the IP address via CarPlay CTRL packets. Rated medium severity (CVSS 4.3), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Harman Infotainment
NVD
EPSS 0% CVSS 6.8
MEDIUM POC This Month

Harman Infotainment 20190525031613 allows root access via SSH over a USB-to-Ethernet dongle with a password that is an internal project name. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Harman Infotainment
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy