CVE-2018-18070

An issue was discovered in Daimler Mercedes-Benz COMAND 17/13.0 50.12 on Mercedes-Benz C-Class 2018 vehicles. Defining or receiving a specific navigation route might cause the system to freeze and reboot after a few transmissions. When the system next starts, it tries to re-calculate the route, which will cause a boot loop. (Under certain circumstances, it is possible to quickly overwrite the malicious route to regain the stability of the system.)
References
Link Resource
https://vuldb.com/?id.125080 Third Party Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:mercedes-benz:comand:17\/13.0_50.12:*:*:*:*:*:*:*
cpe:2.3:h:mercedes-benz:c-class:2018:-:*:*:*:*:*:*

History

No history.

Information

Published : 2018-10-09 09:29

Updated : 2024-02-28 16:48


NVD link : CVE-2018-18070

Mitre link : CVE-2018-18070

CVE.ORG link : CVE-2018-18070


JSON object : View

Products Affected

mercedes-benz

  • comand
  • c-class
CWE
CWE-835

Loop with Unreachable Exit Condition ('Infinite Loop')