CVE-2023-39075

CVSS 3.1 Score 4.6 of 10 (medium)

Details

Published Aug 3, 2023
Updated: Dec 12, 2023

Summary

CVE-2023-39075 is a vulnerability affecting the infotainment system of certain Renault Zoe EV models from 2021. Specifically, versions 283C35202R to 283C35519R, with builds ranging from 11.10.2021 to 16.01.2023, are susceptible to this issue. An attacker can exploit this weakness by sending arbitrary USB data, causing the infotainment system to crash. This vulnerability poses a risk to the user experience and potentially disrupts the vehicle's functionality. Renault is advised to release a patch to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share