CVE-2023-28911

Name of the Vulnerable Software and Affected Versions: MIB3 infotainment (affected versions not specified)

Description: A specific flaw exists within the Bluetooth stack of the MIB3 infotainment, resulting from the lack of proper validation of user-supplied data. This can lead to an arbitrary channel disconnection, allowing an attacker to cause a denial-of-service attack for every connected client of the infotainment device. The issue was originally discovered in a Skoda Superb III car with an MIB3 infotainment unit.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.