Unrated severityNVD Advisory· Published Feb 13, 2025· Updated Mar 14, 2025
CVE-2023-34402
CVE-2023-34402
Description
Mercedes-Benz head-unit NTG6 contains functions to import or export profile settings over USB. Inside file is encapsulate another file, which service will drop during processing. Due to missed checks, attacker can achieve Arbitrary File Write with service speech rights.
Affected products
2- Mercedes-Benz/NTG6description
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.