VYPR

ICAS 3 IVI ECU

by Volkswagen

CVEs (1)

  • CVE-2023-6073MedNov 10, 2023
    risk 0.37cvss 5.7epss 0.00

    Attacker can perform a Denial of Service attack to crash the ICAS 3 IVI ECU in a Volkswagen ID.3 (and other vehicles of the VW Group with the same hardware) and spoof volume setting commands to irreversibly turn on audio volume to maximum via REST API calls.