CVE-2018-9311

Name of the Vulnerable Software and Affected Versions BMW Telematics Control Unit versions 2012 through 2018

Description The issue allows a remote attack via a cellular network.

Recommendations For BMW vehicles produced between 2012 and 2018 with the Telematics Control Unit, consider disabling the unit until a patch is available. Restrict access to the cellular network to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.