Vulnerabilities > CVE-2019-19561 - Insecure Storage of Sensitive Information vulnerability in Harman Hermes 1.5

047910
CVSS 2.1 - LOW
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
local
low complexity
harman
CWE-922

Summary

A misconfiguration in the debug interface in Mercedes-Benz HERMES 1.5 allows an attacker with direct physical access to device hardware to obtain cellular modem information.

Vulnerable Configurations

Part Description Count
Application
Harman
1

Common Weakness Enumeration (CWE)