CVE-2023-39801

CVSS 3.1 Score 4.6 of 10 (medium)

Details

Published Aug 24, 2023

Updated: Aug 29, 2023

CWE ID 755

Summary

CVE-2023-39801 is a Denial of Service (DoS) vulnerability affecting the Renault Easy Link Multimedia System Software Version 283C35519R. The issue stems from insufficient exception handling in the system. An attacker can exploit this weakness by providing maliciously crafted WMA files when connecting a device via the USB plug and play feature. The vulnerability does not allow unauthorized access or data theft, but rather causes the system to become unresponsive, rendering it unusable until it is restarted.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Renault Easy Link

Affected Vendors

Renault

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sP2Uh9
https://www.cve.org/CVERecord?id=CVE-2023-39801
https://nvd.nist.gov/vuln/detail/CVE-2023-39801

Back to Vulnerability Database