Mercedes-Benz head-unit NTG6 contains functions to import or export profile settings over USB. Some values of this table are serialized archive according boost library. The version of boost library contains vulnerability integer overflow.
References
| Link | Resource |
|---|---|
| https://securelist.com/mercedes-benz-head-unit-security-research/115218/ | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
27 Jun 2025, 16:12
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://securelist.com/mercedes-benz-head-unit-security-research/115218/ - Third Party Advisory | |
| First Time |
Mercedes-benz
Mercedes-benz headunit Ntg6 Mercedes-benz User Experience |
|
| CPE | cpe:2.3:a:mercedes-benz:headunit_ntg6_mercedes-benz_user_experience:*:*:*:*:*:*:*:* |
24 Mar 2025, 17:15
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-190 | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
18 Feb 2025, 18:15
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | ||
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : unknown |
14 Feb 2025, 17:15
| Type | Values Removed | Values Added |
|---|---|---|
| Summary |
|
|
| CWE | CWE-190 | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
13 Feb 2025, 22:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-02-13 22:15
Updated : 2025-06-27 16:12
NVD link : CVE-2023-34399
Mitre link : CVE-2023-34399
CVE.ORG link : CVE-2023-34399
JSON object : View
Products Affected
mercedes-benz
- headunit_ntg6_mercedes-benz_user_experience
CWE
CWE-190
Integer Overflow or Wraparound