← Back

CVE-2018-18203

nvd nist
Published: Nov 28, 2018Modified: Nov 21, 2024

JSON object

Loading...
6.4
Vector
CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 0.5 / Impact: 5.9
Source: NVD

Description

A vulnerability in the update mechanism of Subaru StarLink Harman head units 2017, 2018, and 2019 may give an attacker (with physical access to the vehicle's USB ports) the ability to rewrite the firmware of the head unit. This occurs because the device accepts modified QNX6 filesystem images (as long as the attacker obtains access to certain Harman decryption/encryption code) as a consequence of a bug where unsigned images pass a validity check. An attacker could potentially install persistent malicious head unit firmware and execute arbitrary code as the root user.

Affected (3)

Subaru
3 products
Starlink 2017 Firmware
Starlink 2018 Firmware
Starlink 2019 Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Starlink 2017 Firmware
All versions
Running on/withPlatform Versions
Subaru
Starlink 2017
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Starlink 2018 Firmware
All versions
Running on/withPlatform Versions
Subaru
Starlink 2018
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Starlink 2019 Firmware
All versions
Running on/withPlatform Versions
Subaru
Starlink 2019
All versions

Related CWEs

CWE-347
Improper Verification of Cryptographic Signature
The product does not verify, or incorrectly verifies, the cryptographic signature for data.

References (2)

Source: cve@mitre.org
ExploitThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitThird Party Advisory

Timeline

No history available yet.