CVE-2024-8358 | Visteon Infotainment UPDATES_ExtractFile command injection (ZDI-24-1190)

Inserito da Angelo Barbosa | Ago 31, 2024 | CVE

A vulnerability has been found in Visteon Infotainment and classified as critical. This vulnerability affects the function UPDATES_ExtractFile. The manipulation leads to command injection.

This vulnerability was named CVE-2024-8358. It is possible to launch the attack on the physical device. There is no exploit available.

CVE-2024-8358 | Visteon Infotainment UPDATES_ExtractFile command injection (ZDI-24-1190)

Post correlati

CVE-2024-21454 | Qualcomm Snapdragon Automotive Telematics denial of service

CVE-2024-48949 | Elliptic Package up to 6.5.5 on Node.js index.js verify Privilege Escalation

CVE-2024-41962 | Yonle bostr up to 3.0.9 authorized_keys improper authorization (GHSA-5cf7-cxrf-mq73)

CVE-2024-0662 | FancyBox Plugin 3.0.2/3.3.3 on WordPress cross site scripting