CVE-2024-8355 | Visteon Infotainment DeviceManager iAP Serial Number sql injection (ZDI-24-1208)

Posted by Angelo Barbosa | Sep 11, 2024 | CVE

A vulnerability classified as critical has been found in Visteon Infotainment. Affected is an unknown function of the component DeviceManager iAP Serial Number Handler. The manipulation leads to sql injection.

This vulnerability is traded as CVE-2024-8355. It is possible to launch the attack on the physical device. There is no exploit available.

CVE-2024-8355 | Visteon Infotainment DeviceManager iAP Serial Number sql injection (ZDI-24-1208)

Related Posts

CVE-2024-5542 | litonice13 Master Addons Plugin up to 2.0.6.1 on WordPress Navigation Menu Widget cross site scripting

CVE-2023-44853 | Cobham SAILOR VSAT Ku 164B019 sub_219C4 Privilege Escalation

CVE-2024-30802 | Vehicle Management System 7.31.0.3_20230412 login.html Privilege Escalation

CVE-2024-7105 | ForIP Tecnologia Administração PABX 1.x Lista Ura Page /detalheIdUra id sql injection