Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Trip Data Disclosure from Backend
Vulnerability Description
The Skoda Automotive cloud contains a Broken Access Control vulnerability, allowing remote attackers to obtain recent trip data, vehicle mileage, fuel consumption, average and maximum speed, and other information of Skoda Connect service users by specifying an arbitrary vehicle VIN number.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
信息暴露
Vulnerability Title
Skoda 安全漏洞
Vulnerability Description
Skoda是Skoda公司的一系列汽车。 Skoda Automotive存在安全漏洞。远程攻击者利用该漏洞通过指定任意车辆VIN号来获取用户近期行程数据、车辆里程、油耗、平均和最高速度以及其他信息。
CVSS Information
N/A
Vulnerability Type
N/A