← Back

Comand

comand

Vendor: Mercedes Benz • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2020-16142
1Mercedes Benz
1Comand
Nov 21, 2024
Aug 27, 2020
N/A· v4
3.5 LOW· v3
2.9 LOW· v2
On Mercedes-Benz C Class AMG Premium Plus c220 BlueTec vehicles, the Bluetooth stack mishandles %x and %c format-string specifiers in a device name in the COMAND infotainment software.
CVE-2018-18070
1Mercedes Benz
1Comand
Nov 21, 2024
Oct 9, 2018
N/A· v4
5.9 MEDIUM· v3
7.1 HIGH· v2
An issue was discovered in Daimler Mercedes-Benz COMAND 17/13.0 50.12 on Mercedes-Benz C-Class 2018 vehicles. Defining or receiving a specific navigation route might cause the system to freeze and reboot after a few tran...Show more
An issue was discovered in Daimler Mercedes-Benz COMAND 17/13.0 50.12 on Mercedes-Benz C-Class 2018 vehicles. Defining or receiving a specific navigation route might cause the system to freeze and reboot after a few transmissions. When the system next starts, it tries to re-calculate the route, which will cause a boot loop. (Under certain circumstances, it is possible to quickly overwrite the malicious route to regain the stability of the system.)Show less