The Telenav Scout GPS Link app 1.x for... CVE-2019-14951

5.0 AV AC AU C I A
发布: 2019-08-12
修订: 2020-08-24

The Telenav Scout GPS Link app 1.x for iOS, as used with Toyota and Lexus vehicles, has an incorrect protection mechanism against brute-force attacks on the authentication process, which makes it easier for attackers to obtain multimedia-screen access via port 7050 on the cellular network, as demonstrated by a DrivingRestriction method call to uma/jsonrpc/mobile.

0%
暂无可用Exp或PoC
当前有1条受影响产品信息