CVE-2021-23906

LOW

1.8CVSS v3

2.1CVSS v2

0.30% EPSS (exploit probability)

CWE-20CWE

Description

An issue was discovered in the Headunit NTG6 in the MBUX Infotainment System on Mercedes-Benz vehicles through 2021. A Message Length is not checked in the HiQnet Protocol, leading to remote code execution.

CVSS v3 vector: CVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N

Affected routers (0)

No routers currently mapped to this CVE in our database.

External references

NIST NVD
MITRE CVE