CVE-2024-6347

Name of the Vulnerable Software and Affected Versions Nissan Altima (2022)

Description The issue concerns unprotected privileged mode access through UDS session in the Blind Spot Detection Sensor ECU firmware, allowing attackers to trigger denial-of-service (DoS) by unauthorized access to the ECU's programming session. Additionally, no preconditions are implemented for ECU management functionality through UDS session, enabling attackers to disrupt normal ECU operations by triggering a control command without authentication.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.