Description
The Head Unit HU_NBT (aka Infotainment) component on BMW i Series, BMW X Series, BMW 3 Series, BMW 5 Series, and BMW 7 Series vehicles produced in 2012 through 2018 allows local attacks involving the USB or OBD-II interface. An attacker can bypass the code-signing protection mechanism for firmware updates, and consequently obtain a root shell.
References (3)
Core 3
Core References
Exploit, Third Party Advisory x_refsource_misc
https://keenlab.tencent.com/en/Experimental_Security_Assessment_of_BMW_Cars_by_KeenLab.pdf
Third Party Advisory x_refsource_misc
https://www.theregister.co.uk/2018/05/23/bmw_security_bugs/
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/104258
Scores
CVSS v3
7.8
EPSS
0.0064
EPSS Percentile
45.9%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-693
Status
published
Products (1)
bmw/head_unit_hu_nbt_firmware
Published
May 31, 2018
Tracked Since
Feb 18, 2026