CVE-2024-37601

CVSS 3.1 Score 4.6 of 10 (medium)

Details

Published Feb 13, 2025

Updated: Feb 18, 2025

CWE ID 122

Summary

CVE-2024-37601 is a heap buffer overflow vulnerability affecting Mercedes Benz NTG (New Telematics Generation) 6 head units. This issue resides in the user data import/export function and can be exploited when an attacker gains local access to the USB interface of the car. Successful exploitation of this vulnerability causes the User-Data service to fail, leading to automatic restart of the failed service instance.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/wYk_zp
https://www.cve.org/CVERecord?id=CVE-2024-37601
https://nvd.nist.gov/vuln/detail/CVE-2024-37601

Back to Vulnerability Database

CVE-2024-37601

CVSS 3.1 Score 4.6 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations