CVE-2019-19563

Low

2.4/10

Summary

A misconfiguration in the debug interface in Mercedes-Benz HERMES 2.1 allows an attacker with direct physical access to device hardware to obtain cellular modem information.

Attack Complexity: LOW
Attack Vector: PHYSICAL
Integrity Impact: NONE
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: NONE
Confidentiality Impact: LOW
Availability Impact: NONE

References

Advisory Timeline

Published Nov 16, 2020

CVE-2019-19563

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS