{"vulnerability": "CVE-2023-34402", "sightings": [{"uuid": "5128fcaa-6862-4471-a409-bde0eb1e224d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-34402", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-45ff02b8-52616ac586aa8672", "content": "", "creation_timestamp": "2025-01-17T13:35:06.815045Z"}, {"uuid": "fa8a1ee3-b635-4d5f-bba3-7d251f397153", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-34402", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/4384", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-34402\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: No description available\n\ud83d\udccf Published: 2025-02-13T23:15:09.337\n\ud83d\udccf Modified: N/A\n\ud83d\udd17 References:\n1. https://securelist.com/mercedes-benz-head-unit-security-research/115218/", "creation_timestamp": "2025-02-14T01:11:33.000000Z"}, {"uuid": "27f83504-c1a8-4ed2-9096-803f6f017973", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-34402", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3li3sxyyp7b2s", "content": "", "creation_timestamp": "2025-02-13T23:15:30.945215Z"}, {"uuid": "8c21f1cd-9baf-4b61-8859-4bd7d17a6364", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-34402", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3li3xgcwq4t2p", "content": "", "creation_timestamp": "2025-02-14T00:35:06.335126Z"}, {"uuid": "e0982b3c-dfe9-4021-bf2d-9503bbd0d6ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-34402", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/4396", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-34402\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Mercedes-Benz head-unit NTG6 contains functions to import or export profile settings over USB. Inside file is encapsulate another file, which service will drop during processing. Due to missed checks, attacker can achieve Arbitrary File Write with service speech rights.\n\ud83d\udccf Published: 2025-02-14T00:30:44Z\n\ud83d\udccf Modified: 2025-02-14T00:30:44Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2023-34402\n2. https://securelist.com/mercedes-benz-head-unit-security-research/115218", "creation_timestamp": "2025-02-14T01:16:11.000000Z"}, {"uuid": "f3ae16c6-acf6-415a-9eec-53d8d74e20ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-34402", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/7605", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-34402\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Mercedes-Benz head-unit NTG6 contains functions to import or export profile settings over USB. Inside file is encapsulate another file, which service will drop during processing. Due to missed checks, attacker can achieve Arbitrary File Write with service speech rights.\n\ud83d\udccf Published: 2025-02-13T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-14T17:24:26.958Z\n\ud83d\udd17 References:\n1. https://securelist.com/mercedes-benz-head-unit-security-research/115218/", "creation_timestamp": "2025-03-14T17:48:48.000000Z"}, {"uuid": "1d0eb15a-f454-432d-843f-fef28fe0c829", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-34402", "type": "seen", "source": "https://t.me/cvedetector/18058", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-34402 - Mercedes-Benz NTG6 Arbitrary File Write Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2023-34402 \nPublished : Feb. 13, 2025, 11:15 p.m. | 33\u00a0minutes ago \nDescription : Mercedes-Benz head-unit NTG6 contains functions to import or export profile settings over USB. Inside file is encapsulate another file, which service will drop during processing. Due to missed checks, attacker can achieve Arbitrary File Write with service speech rights. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-14T01:32:20.000000Z"}, {"uuid": "1aa041a7-6cc8-4d03-9f41-67e81ae6edbb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-34402", "type": "seen", "source": "Telegram/lTEh28Umh_YYj17aM4Cer3CaQV0994f4xB2Q42JZGZ1z4HtV", "content": "", "creation_timestamp": "2025-02-14T10:09:24.000000Z"}]}