Vulnerabilities (CVE)

Filtered by vendor Skoda-auto Subscribe
Filtered by product Skoda Connect
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-28901 1 Skoda-auto 1 Skoda Connect 2024-11-21 N/A 5.3 MEDIUM
The Skoda Automotive cloud contains a Broken Access Control vulnerability, allowing remote attackers to obtain recent trip data, vehicle mileage, fuel consumption, average and maximum speed, and other information of Skoda Connect service users by specifying an arbitrary vehicle VIN number.
CVE-2023-28900 1 Skoda-auto 1 Skoda Connect 2024-11-21 N/A 5.3 MEDIUM
The Skoda Automotive cloud contains a Broken Access Control vulnerability, allowing to obtain nicknames and other user identifiers of Skoda Connect service users by specifying an arbitrary vehicle VIN number.