CVE-2023-40292

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Aug 14, 2023

Updated: Aug 21, 2023

Summary

CVE-2023-40292 is a vulnerability affecting Harman Infotainment systems with version 20190525031613 and later. This issue allows attackers to obtain the IP address of the affected system through CarPlay CTRL packets. The disclosure of IP addresses can lead to potential risks, including unauthorized access and network exploitation. Users are advised to update their systems to the latest version to mitigate this vulnerability. The impact on safety systems is unclear, further investigation is needed.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Samsung

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sVeit7
https://www.cve.org/CVERecord?id=CVE-2023-40292
https://nvd.nist.gov/vuln/detail/CVE-2023-40292

Back to Vulnerability Database

CVE-2023-40292

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations