CVE-2024-8358 | Visteon Infotainment UPDATES_ExtractFile command injection (ZDI-24-1190)

Inserito da Angelo Barbosa | Ago 31, 2024 | CVE

A vulnerability has been found in Visteon Infotainment and classified as critical. This vulnerability affects the function UPDATES_ExtractFile. The manipulation leads to command injection.

This vulnerability was named CVE-2024-8358. It is possible to launch the attack on the physical device. There is no exploit available.

CVE-2024-8358 | Visteon Infotainment UPDATES_ExtractFile command injection (ZDI-24-1190)

Post correlati

CVE-2023-6652 | code-projects Matrimonial Site 1.0 /register.php register sql injection

CVE-2021-42144 | Contiki-NG TinyDTLS up to 2018-08-30 dtls_ccm_decrypt_message buffer overflow

CVE-2023-52328 | Trend Micro Apex Central cross site scripting

CVE-2024-5085 | Hash Form Plugin up to 1.1.0 on WordPress code injection