← Back

Mercedes Benz

mercedes-benz

24 CVEs • 16 products

Products (16)

Click to collapse
Toggle
Headunit Ntg6 Mercedes Benz User Experience
headunit_ntg6_mercedes-benz_user_experience
15 CVEs
Mercedes Me
mercedes_me
3 CVEs
Comand
comand
2 CVEs
Hermes
hermes
2 CVEs
Mercedes Benz User Experience
mercedes-benz_user_experience
1 CVE
Xentry Retail Data Storage Firmware
xentry_retail_data_storage_firmware
1 CVE
C Class
c-class
0 CVEs
C220
c220
0 CVEs
A 220
a_220
0 CVEs
A 220 4matic
a_220_4matic
0 CVEs
E 350
e_350
0 CVEs
E 350 4matic
e_350_4matic
0 CVEs
Eqc
eqc
0 CVEs
Gle 350
gle_350
0 CVEs
Gle 350 4matic
gle_350_4matic
0 CVEs
Xentry Retail Data Storage
xentry_retail_data_storage
0 CVEs

CVEs (24)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-23906
1Mercedes Benz
1Mercedes Benz User Experience
Nov 21, 2024
May 13, 2021
N/A· v4
6.8 MEDIUM· v3
2.1 LOW· v2
An issue was discovered in the Headunit NTG6 in the MBUX Infotainment System on Mercedes-Benz vehicles through 2021. A Message Length is not checked in the HiQnet Protocol, leading to remote code execution.
CVE-2020-16142
1Mercedes Benz
1Comand
Nov 21, 2024
Aug 27, 2020
N/A· v4
3.5 LOW· v3
2.9 LOW· v2
On Mercedes-Benz C Class AMG Premium Plus c220 BlueTec vehicles, the Bluetooth stack mishandles %x and %c format-string specifiers in a device name in the COMAND infotainment software.
CVE-2018-18071
1Mercedes Benz
1Mercedes Me
Nov 21, 2024
Oct 9, 2018
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
An issue was discovered in the Daimler Mercedes-Benz Me app 2.11.0-846 for iOS. The encrypted Connected Vehicle API data exchange between the app and a server might be intercepted. The app can be used to operate the Remo...Show more
An issue was discovered in the Daimler Mercedes-Benz Me app 2.11.0-846 for iOS. The encrypted Connected Vehicle API data exchange between the app and a server might be intercepted. The app can be used to operate the Remote Parking Pilot, unlock the vehicle, or obtain sensitive information such as latitude, longitude, and direction of travel.Show less
CVE-2018-18070
1Mercedes Benz
1Comand
Nov 21, 2024
Oct 9, 2018
N/A· v4
5.9 MEDIUM· v3
7.1 HIGH· v2
An issue was discovered in Daimler Mercedes-Benz COMAND 17/13.0 50.12 on Mercedes-Benz C-Class 2018 vehicles. Defining or receiving a specific navigation route might cause the system to freeze and reboot after a few tran...Show more
An issue was discovered in Daimler Mercedes-Benz COMAND 17/13.0 50.12 on Mercedes-Benz C-Class 2018 vehicles. Defining or receiving a specific navigation route might cause the system to freeze and reboot after a few transmissions. When the system next starts, it tries to re-calculate the route, which will cause a boot loop. (Under certain circumstances, it is possible to quickly overwrite the malicious route to regain the stability of the system.)Show less