Bluetooth Stack Vulnerability in Audi A7 MMI 2014: Memory Leaks and Service Crashes

Bluetooth Stack Vulnerability in Audi A7 MMI 2014: Memory Leaks and Service Crashes

CVE-2020-27524 · HIGH Severity

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

On Audi A7 MMI 2014 vehicles, the Bluetooth stack in Audi A7 MMI Multiplayer with version (N+R_CN_AU_P0395) mishandles %x and %s format string specifiers in a device name. This may lead to memory content leaks and potentially crash the services.

Learn more about our Web Application Penetration Testing UK.