Sign-up

ID

VAR-201811-0194


CVE

CVE-2018-18203


TITLE

Subaru StarLink Harman head units Vulnerability in digital signature verification

Trust: 0.8

sources: JVNDB: JVNDB-2018-014318

DESCRIPTION

A vulnerability in the update mechanism of Subaru StarLink Harman head units 2017, 2018, and 2019 may give an attacker (with physical access to the vehicle's USB ports) the ability to rewrite the firmware of the head unit. This occurs because the device accepts modified QNX6 filesystem images (as long as the attacker obtains access to certain Harman decryption/encryption code) as a consequence of a bug where unsigned images pass a validity check. An attacker could potentially install persistent malicious head unit firmware and execute arbitrary code as the root user. The FHI Subaru StarLink Harman is a vehicle produced by the Japanese company Fuji Heavy Industries (FHI)

Trust: 1.71

sources: NVD: CVE-2018-18203 // JVNDB: JVNDB-2018-014318 // VULHUB: VHN-128739

AFFECTED PRODUCTS

vendor:subarumodel:starlink 2017scope:eqversion: -

Trust: 1.0

vendor:subarumodel:starlink 2019scope:eqversion: -

Trust: 1.0

vendor:subarumodel:starlink 2018scope:eqversion: -

Trust: 1.0

vendor:subaru of americamodel:starlink 2017scope: - version: -

Trust: 0.8

vendor:subaru of americamodel:starlink 2018scope: - version: -

Trust: 0.8

vendor:subaru of americamodel:starlink 2019scope: - version: -

Trust: 0.8

sources: JVNDB: JVNDB-2018-014318 // NVD: CVE-2018-18203

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2018-18203
value: MEDIUM

Trust: 1.0

NVD: CVE-2018-18203
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-201811-858
value: MEDIUM

Trust: 0.6

VULHUB: VHN-128739
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2018-18203
severity: MEDIUM
baseScore: 6.9
vectorString: AV:L/AC:M/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.4
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-128739
severity: MEDIUM
baseScore: 6.9
vectorString: AV:L/AC:M/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.4
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2018-18203
baseSeverity: MEDIUM
baseScore: 6.4
vectorString: CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector: PHYSICAL
attackComplexity: HIGH
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 0.5
impactScore: 5.9
version: 3.0

Trust: 1.8

sources: VULHUB: VHN-128739 // JVNDB: JVNDB-2018-014318 // CNNVD: CNNVD-201811-858 // NVD: CVE-2018-18203

PROBLEMTYPE DATA

problemtype:CWE-347

Trust: 1.9

sources: VULHUB: VHN-128739 // JVNDB: JVNDB-2018-014318 // NVD: CVE-2018-18203

TYPE

lack of information

Trust: 0.6

sources: CNNVD: CNNVD-201811-858

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2018-014318

PATCH
title:SUBARU STARLINKurl:https://www.subaru.com/engineering/starlink.html
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2018-014318

EXTERNAL IDS
db:NVDid:CVE-2018-18203
Trust: 2.5
db:JVNDBid:JVNDB-2018-014318
Trust: 0.8
db:CNNVDid:CNNVD-201811-858
Trust: 0.7
db:VULHUBid:VHN-128739
Trust: 0.1
sources:
            
            
            VULHUB: VHN-128739 // 
            
            
            
            JVNDB: JVNDB-2018-014318 // 
            
            
            
            CNNVD: CNNVD-201811-858 // 
            
            
            
            NVD: CVE-2018-18203

REFERENCES
url:https://github.com/sgayou/subaru_starlink_research
Trust: 2.5
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-18203
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2018-18203
Trust: 0.8
sources:
            
            
            VULHUB: VHN-128739 // 
            
            
            
            JVNDB: JVNDB-2018-014318 // 
            
            
            
            CNNVD: CNNVD-201811-858 // 
            
            
            
            NVD: CVE-2018-18203

SOURCES
db:VULHUBid:VHN-128739
db:JVNDBid:JVNDB-2018-014318
db:CNNVDid:CNNVD-201811-858
db:NVDid:CVE-2018-18203

LAST UPDATE DATE
2024-11-23T23:01:59.759000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-128739date:2019-02-05T00:00:00
db:JVNDBid:JVNDB-2018-014318date:2019-03-18T00:00:00
db:CNNVDid:CNNVD-201811-858date:2019-02-13T00:00:00
db:NVDid:CVE-2018-18203date:2024-11-21T03:55:31.973

SOURCES RELEASE DATE
db:VULHUBid:VHN-128739date:2018-11-28T00:00:00
db:JVNDBid:JVNDB-2018-014318date:2019-03-18T00:00:00
db:CNNVDid:CNNVD-201811-858date:2018-11-29T00:00:00
db:NVDid:CVE-2018-18203date:2018-11-28T23:29:00.357