CVE-2024-8357

Name of the Vulnerable Software and Affected Versions Visteon Infotainment App SoC (affected versions not specified)

Description This issue allows local attackers to escalate privileges on affected installations of Visteon Infotainment systems. Although authentication is required to exploit this issue, the existing authentication mechanism can be bypassed. The specific flaw exists within the configuration of the application system-on-chip (SoC) due to the lack of properly configured hardware root of trust. An attacker can leverage this issue to escalate privileges and execute arbitrary code in the context of the boot process.

Recommendations At the moment, there is no information about a newer version that contains a fix for this issue.