ZDI-23-973: (Pwn2Own) Tesla Model 3 bsa_server BIP Heap-based Buffer Overflow Arbitrary Code Execution Vulnerability - Cyber Security News

Read Time:12 Second

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected Tesla Model 3 vehicles. An attacker must first obtain the ability to pair a malicious Bluetooth device with the target system in order to exploit this vulnerability.

More Stories

python-zipp-0.5.1-4.el8

FEDORA-EPEL-2024-d7489f4064 Packages in this update: python-zipp-0.5.1-4.el8 Update description: Security fix for CVE-2024-5569 (rhbz#2297119) Read More

September 23, 2024

USN-7020-2: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This...

September 23, 2024

USN-7007-2: Linux kernel vulnerabilities

Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could...

September 23, 2024

USN-6992-2: Firefox regressions

USN-6992-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the...

September 23, 2024

GLSA 202409-20: curl: Multiple Vulnerabilities

Post Content Read More

September 23, 2024

GLSA 202409-07: Rust: Multiple Vulnerabilities

Post Content Read More

September 22, 2024