Vulnerabilities (CVE)

Filtered by vendor Gm Subscribe
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-39076 1 Gm 2 Chevrolet Equinox, Mylink Infotainment System 2023-12-10 N/A 4.6 MEDIUM
Injecting random data into the USB memory area on a General Motors (GM) Chevrolet Equinox 2021 Software. 2021.03.26 (build version) vehicle causes a Denial of Service (DoS) in the in-car infotainment system.
CVE-2023-28885 1 Gm 2 Chevrolet Equinox, Mylink Infotainment System 2023-12-10 N/A 6.8 MEDIUM
The MyLink infotainment system (build 2021.3.26) in General Motors Chevrolet Equinox 2021 vehicles allows attackers to cause a denial of service (temporary failure of Media Player functionality) via a crafted MP3 file.
CVE-2017-12697 1 Gm 1 Shanghai Onstar 2023-12-10 4.3 MEDIUM 5.9 MEDIUM
A Man-in-the-Middle issue was discovered in General Motors (GM) and Shanghai OnStar (SOS) SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow an attacker to intercept sensitive information when the client connects to the server.
CVE-2017-12695 1 Gm 1 Shanghai Onstar 2023-12-10 4.0 MEDIUM 8.8 HIGH
An Improper Authentication issue was discovered in General Motors (GM) and Shanghai OnStar (SOS) SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow an attacker to subvert security mechanisms and reset a user account password.
CVE-2017-9663 1 Gm 1 Shanghai Onstar 2023-12-10 5.0 MEDIUM 7.5 HIGH
An Cleartext Storage of Sensitive Information issue was discovered in General Motors (GM) and Shanghai OnStar (SOS) SOS iOS Client 7.1. Successful exploitation of this vulnerability may allow a remote attacker to access an encryption key that is stored in cleartext in memory.