CVE-2018-18203

Name of the Vulnerable Software and Affected Versions Subaru StarLink Harman head units 2017, 2018, and 2019

Description A bug in the update mechanism may allow an attacker with physical access to the vehicle's USB ports to rewrite the firmware of the head unit. This is possible because the device accepts modified QNX6 filesystem images, as long as the attacker obtains access to certain Harman decryption/encryption code, due to unsigned images passing a validity check. An attacker could potentially install persistent malicious head unit firmware and execute arbitrary code as the root user.

Recommendations For Subaru StarLink Harman head units 2017, 2018, and 2019, at the moment, there is no information about a newer version that contains a fix for this vulnerability.