Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2023-47393 | 1 Mercedes-benz | 1 Mercedes Me | 2024-11-21 | N/A | 5.3 MEDIUM |
An access control issue in Mercedes me IOS APP v1.34.0 and below allows attackers to view the maintenance orders of other users and access sensitive user information via unspecified vectors. | |||||
CVE-2023-47392 | 1 Mercedes-benz | 1 Mercedes Me | 2024-11-21 | N/A | 5.3 MEDIUM |
An access control issue in Mercedes me IOS APP v1.34.0 and below allows attackers to view the carts of other users via sending a crafted add order request. | |||||
CVE-2018-18071 | 1 Mercedes-benz | 1 Mercedes Me | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
An issue was discovered in the Daimler Mercedes-Benz Me app 2.11.0-846 for iOS. The encrypted Connected Vehicle API data exchange between the app and a server might be intercepted. The app can be used to operate the Remote Parking Pilot, unlock the vehicle, or obtain sensitive information such as latitude, longitude, and direction of travel. |