CVE-2023-28897
CVSS V2 None
CVSS V3 None
Description
The secret value used for access to critical UDS services of the MIB3 infotainment is hardcoded in the firmware.
Vulnerability discovered on Škoda Superb III (3V3) - 2.0 TDI manufactured in 2022.
Overview
- CVE ID
- CVE-2023-28897
- Assigner
- ASRG
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-01-12T15:55:00.234Z
- Last Modified Date
- 2024-04-24T14:25:31.376Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://asrg.io/security-advisories/cve-2023-28897 |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-28897 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28897 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-25 10:45:40 | Added to TrackCVE |