CVE-2017-9633: CVE-2017-9633

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2017-9633

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

An Improper Restriction of Operations within the Bounds of a Memory Buffer issue was discovered in the Continental AG Infineon S-Gold 2 (PMB 8876) chipset on BMW several models produced between 2009-2010, Ford a limited number of P-HEV vehicles, Infiniti 2013 JX35, Infiniti 2014-2016 QX60, Infiniti 2014-2016 QX60 Hybrid, Infiniti 2014-2015 QX50, Infiniti 2014-2015 QX50 Hybrid, Infiniti 2013 M37/M56, Infiniti 2014-2016 Q70, Infiniti 2014-2016 Q70L, Infiniti 2015-2016 Q70 Hybrid, Infiniti 2013 QX56, Infiniti 2014-2016 QX 80, and Nissan 2011-2015 Leaf. A vulnerability in the temporary mobile subscriber identity (TMSI) may allow an attacker to access and control memory. This may allow remote code execution on the baseband radio processor of the TCU.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

内存缓冲区边界内操作的限制不恰当

Source: NVD (National Vulnerability Database)

Vulnerability Title

Continental AG Infineon S-Gold 2 (PMB 8876) chipset 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Continental AG Infineon S-Gold 2 (PMB 8876) chipset是德国Continental AG（Conti）公司生产的一个应用在汽车中的远程信息处理控制单元。 Continental AG Infineon S-Gold 2 (PMB 8876) chipset中的temporary mobile subscriber identity (TMSI)存在安全漏洞。远程攻击者可利用该漏洞执行任意代码。以下汽车型号受到影响：BMW several models pro

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	Continental AG Infineon S-Gold 2 (PMB 8876)	Continental AG Infineon S-Gold 2 (PMB 8876)	-

II. Public POCs for CVE-2017-9633

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2017-9633

Please Login to view more intelligence information

https://ics-cert.us-cert.gov/advisories/ICSA-17-208-01x_refsource_MISC
http://www.securityfocus.com/bid/100132vdb-entryx_refsource_BID
https://nvd.nist.gov/vuln/detail/CVE-2017-9633

IV. Related Vulnerabilities

Same product: Continental AG Infineon S-Gold 2 (PMB 8876)

CVE-2017-9647
Continental AG Infineon S-Gold 2 (PMB 8876) chipset 缓冲区错误漏洞

Same vendor: n/a

Same weakness: CWE-119

V. Comments for CVE-2017-9633

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2017-9633

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2017-9633

III. Intelligence Information for CVE-2017-9633

IV. Related Vulnerabilities

V. Comments for CVE-2017-9633

Leave a comment