Vulnerabilities (CVE)

Filtered by vendor Mercedes-benz Subscribe
Filtered by product Mercedes Me
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-47393 1 Mercedes-benz 1 Mercedes Me 2024-11-21 N/A 5.3 MEDIUM
An access control issue in Mercedes me IOS APP v1.34.0 and below allows attackers to view the maintenance orders of other users and access sensitive user information via unspecified vectors.
CVE-2023-47392 1 Mercedes-benz 1 Mercedes Me 2024-11-21 N/A 5.3 MEDIUM
An access control issue in Mercedes me IOS APP v1.34.0 and below allows attackers to view the carts of other users via sending a crafted add order request.
CVE-2018-18071 1 Mercedes-benz 1 Mercedes Me 2024-11-21 5.0 MEDIUM 7.5 HIGH
An issue was discovered in the Daimler Mercedes-Benz Me app 2.11.0-846 for iOS. The encrypted Connected Vehicle API data exchange between the app and a server might be intercepted. The app can be used to operate the Remote Parking Pilot, unlock the vehicle, or obtain sensitive information such as latitude, longitude, and direction of travel.