Mercedes-Benz head-unit NTG6
0 remedies
cpe:2.3:a:mercedes-benz:headunit_ntg6_mercedes-benz_user_experience:*:*:*:*:*:*:*
0 remedies
Mercedes-Benz NTG6 Head Unit Command Injection Vulnerability via GCF Protocol
Vulnerability
A command injection vulnerability has been identified in the Mercedes-Benz NTG6 head unit, specifically within the GCF (Generic Communication Framework) protocol. This vulnerability arises from an exposed service called 'MonitorService', which is initialized by the 'scp' service. The issue allows an attacker to send crafted requests that are executed as system commands, potentially leading to unauthorized actions on the vehicle's network or systems.
Impact
Exploitation of this vulnerability allows for command injection via the GCF protocol, enabling attackers to execute arbitrary commands on the head unit's operating system.
Reproduction
The vulnerability can be reproduced by connecting to the head unit's internal network through the Base Board Ethernet pins. Once connected, access the 'MonitorService' over GCF. The 'NWS_PF_setMacAddrExceptionIP' handler can be targeted, as it lacks proper validation and allows for injection of commands that are executed with system privileges.
Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM
Vulnerability Rating
Custom Algorithm
spread
6.8impact
0.6exploitability
7.6remediation
0.0relevance
0.0threat
6.4urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.