CVSS: 2.4EPSS: 0%CPEs: 1EXPL: 1CVE-2019-19561
https://notcve.org/view.php?id=CVE-2019-19561
A misconfiguration in the debug interface in Mercedes-Benz HERMES 1.5 allows an attacker with direct physical access to device hardware to obtain cellular modem information. Una configuración inapropiada en la interfaz de depuración en Mercedes-Benz HERMES versión 1.5, permite a un atacante con acceso físico directo al hardware del dispositivo obtener información del módem celular • https://media.daimler.com/marsMediaSite/en/instance/ko/Mercedes-Benz-and-360-Group-to-join-forces-Mercedes-Benz-and-360-Group-with-its-Cyber-Security-Brain-work-together-to-strengthen-car-IT-security-for-industry.xhtml?oid=45208829 https://skygo.360.cn/archive/Security-Research-Report-on-Mercedes-Benz-Cars-en.pdf • CWE-922: Insecure Storage of Sensitive Information •
CVSS: 2.4EPSS: 0%CPEs: 1EXPL: 1CVE-2019-19557
https://notcve.org/view.php?id=CVE-2019-19557
A misconfiguration in the debug interface in Mercedes-Benz HERMES 1 allows an attacker with direct physical access to device hardware to obtain cellular modem information. Una configuración inapropiada en la interfaz de depuración en Mercedes-Benz HERMES versión 1, permite a un atacante con acceso físico directo al hardware del dispositivo obtener información del módem celular • https://media.daimler.com/marsMediaSite/en/instance/ko/Mercedes-Benz-and-360-Group-to-join-forces-Mercedes-Benz-and-360-Group-with-its-Cyber-Security-Brain-work-together-to-strengthen-car-IT-security-for-industry.xhtml?oid=45208829 https://skygo.360.cn/archive/Security-Research-Report-on-Mercedes-Benz-Cars-en.pdf • CWE-922: Insecure Storage of Sensitive Information •
CVSS: 2.4EPSS: 0%CPEs: 1EXPL: 1CVE-2019-19563
https://notcve.org/view.php?id=CVE-2019-19563
A misconfiguration in the debug interface in Mercedes-Benz HERMES 2.1 allows an attacker with direct physical access to device hardware to obtain cellular modem information. Una configuración inapropiada en la interfaz de depuración en Mercedes-Benz HERMES versión 2.1, permite a un atacante con acceso físico directo al hardware del dispositivo obtener información del módem celular • https://media.daimler.com/marsMediaSite/en/instance/ko/Mercedes-Benz-and-360-Group-to-join-forces-Mercedes-Benz-and-360-Group-with-its-Cyber-Security-Brain-work-together-to-strengthen-car-IT-security-for-industry.xhtml?oid=45208829 https://skygo.360.cn/archive/Security-Research-Report-on-Mercedes-Benz-Cars-en.pdf •
CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 1CVE-2019-19560
https://notcve.org/view.php?id=CVE-2019-19560
An authentication bypass in the debug interface in Mercedes-Benz HERMES 1.5 allows an attacker with physical access to device hardware to obtain system information. Una configuración inapropiada en la interfaz de depuración en Mercedes-Benz HERMES versión 1.5, permite a un atacante con acceso físico directo al hardware del dispositivo obtener información del módem celular • https://media.daimler.com/marsMediaSite/en/instance/ko/Mercedes-Benz-and-360-Group-to-join-forces-Mercedes-Benz-and-360-Group-with-its-Cyber-Security-Brain-work-together-to-strengthen-car-IT-security-for-industry.xhtml?oid=45208829 https://skygo.360.cn/archive/Security-Research-Report-on-Mercedes-Benz-Cars-en.pdf • CWE-287: Improper Authentication •
CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 1CVE-2019-19556
https://notcve.org/view.php?id=CVE-2019-19556
An authentication bypass in the debug interface in Mercedes-Benz HERMES 1 allows an attacker with physical access to device hardware to obtain system information. Una omisión de autenticación en la interfaz de depuración en Mercedes-Benz HERMES versión 1, permite a un atacante con acceso físico al hardware del dispositivo obtener información del sistema • https://media.daimler.com/marsMediaSite/en/instance/ko/Mercedes-Benz-and-360-Group-to-join-forces-Mercedes-Benz-and-360-Group-with-its-Cyber-Security-Brain-work-together-to-strengthen-car-IT-security-for-industry.xhtml?oid=45208829 https://skygo.360.cn/archive/Security-Research-Report-on-Mercedes-Benz-Cars-en.pdf •