Vulnerabilities > CVE-2024-6347 - Unspecified vulnerability in Nissan-Global Blind Spot Detection Sensor ECU Firmware

CVSS 6.5 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

low complexity

nissan-global

NVD

Published: 2024-08-15

Updated: 2024-08-16

Summary

* Unprotected privileged mode access through UDS session in the Blind Spot Detection Sensor ECU firmware in Nissan Altima (2022) allows attackers to trigger denial-of-service (DoS) by unauthorized access to the ECU's programming session. * No preconditions implemented for ECU management functionality through UDS session in the Blind Spot Detection Sensor ECU in Nissan Altima (2022) allows attackers to disrupt normal ECU operations by triggering a control command without authentication.

Vulnerable Configurations

Part	Description	Count
OS	Nissan-Global Nissan Global Blind Spot Detection Sensor ECU Firmware -	1
Hardware	Nissan-Global Nissan Global Altima 2022	1

References

https://asrg.io/security-advisories/CVE-2024-6347