PT-2024-37557 · Nissan · Nissan Altima Blind Spot Protection Sensor Ecu
Thomas Sermpinis
·
Published
2024-08-19
·
Updated
2024-08-30
·
CVE-2024-6348
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Nissan Altima (2022) Blind Spot Protection Sensor ECU
Description
The issue concerns predictable seed generation in the security access mechanism of UDS in the Blind Spot Protection Sensor ECU. This predictability allows attackers to forecast the requested seeds and bypass security controls by repeatedly resetting the ECU and requesting seeds.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Use of Insufficiently Random Values
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Nissan Altima Blind Spot Protection Sensor Ecu