CVE-2018-9322

HIGH

BMW i-X-3-5-7 - Local Privilege Escalation

Title source: llm

Description

The Head Unit HU_NBT (aka Infotainment) component on BMW i Series, BMW X Series, BMW 3 Series, BMW 5 Series, and BMW 7 Series vehicles produced in 2012 through 2018 allows local attacks involving the USB or OBD-II interface. An attacker can bypass the code-signing protection mechanism for firmware updates, and consequently obtain a root shell.

References (3)

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/104258

[Exploit, Third Party Advisory] https://keenlab.tencent.com/en/Experimental_Security_Assessment_of_BMW_Cars_by_KeenLab.pdf

[Third Party Advisory] https://www.theregister.co.uk/2018/05/23/bmw_security_bugs/

Scores

CVSS v3 7.8

EPSS 0.0005

EPSS Percentile 16.5%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-693

Status published

Affected Products (1)

bmw/head_unit_hu_nbt_firmware

Timeline

Published May 31, 2018

Tracked Since Feb 18, 2026