RSS   Podatności dla 'Scout gps link'   RSS

2019-08-12
 
CVE-2019-14951

CWE-254
 

 
The Telenav Scout GPS Link app 1.x for iOS, as used with Toyota and Lexus vehicles, has an incorrect protection mechanism against brute-force attacks on the authentication process, which makes it easier for attackers to obtain multimedia-screen access via port 7050 on the cellular network, as demonstrated by a DrivingRestriction method call to uma/jsonrpc/mobile.

 


Copyright 2021, cxsecurity.com

 

Back to Top