CVE-2023-34399 – This vulnerability in Mercedes-Benz NTG6 head u... (How to Fix)

Q: What is the severity of CVE-2023-34399?

CVE-2023-34399 has a CVSS score of 9.8 (CRITICAL). This vulnerability in Mercedes-Benz NTG6 head units allows integer overflow in the Boost library when processing serialized archives via USB profile import/export functions. Attackers could potentially execute arbitrary code on the vehicle's infotainment system. Affects Mercedes-Benz vehicles with NTG6 head units.

📋 TL;DR

This vulnerability in Mercedes-Benz NTG6 head units allows integer overflow in the Boost library when processing serialized archives via USB profile import/export functions. Attackers could potentially execute arbitrary code on the vehicle's infotainment system. Affects Mercedes-Benz vehicles with NTG6 head units.

💻 Affected Systems

Products:

Mercedes-Benz vehicles with NTG6 head units

Versions: All versions using vulnerable Boost library implementation

Operating Systems: Embedded automotive OS on NTG6 platform

Default Config Vulnerable: ⚠️ Yes

Notes: Requires USB connection to exploit; specific vehicle models with NTG6 head units are affected.

📦 What is this software?

Headunit Ntg6 Mercedes Benz User Experience by Mercedes Benz

View all CVEs affecting Headunit Ntg6 Mercedes Benz User Experience →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete compromise of the head unit, potentially enabling vehicle system manipulation or data exfiltration.

🟠

Likely Case

Local code execution via USB connection, allowing attackers to install malware or access vehicle systems when physical access is obtained.

🟢

If Mitigated

Limited impact if USB ports are disabled or access controlled, though the vulnerability remains present in the system.

🌐 Internet-Facing: LOW - Requires physical USB connection or local network access, not directly internet-exposed.

🏢 Internal Only: MEDIUM - Attackers with physical access to USB ports or local network access could exploit this vulnerability.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

Exploitation requires crafting malicious serialized archives and USB access; no public exploit code available.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check with Mercedes-Benz dealership for specific firmware updates

Vendor Advisory: https://securelist.com/mercedes-benz-head-unit-security-research/115218/

Restart Required: Yes

Instructions:

1. Contact authorized Mercedes-Benz dealership. 2. Schedule firmware update for NTG6 head unit. 3. Apply manufacturer-provided patch. 4. Restart vehicle systems to complete installation.

🔧 Temporary Workarounds

Disable USB profile import/export

all

Disable USB-based profile import/export functionality if available in vehicle settings

Physical USB port control

all

Restrict physical access to USB ports using port locks or covers

🧯 If You Can't Patch

Disable USB ports entirely if not required for normal operation
Implement strict physical security controls around vehicle access

🔍 How to Verify

Check if Vulnerable:

Check vehicle head unit firmware version and compare against Mercedes-Benz security bulletins

Check Version:

Check through vehicle's system settings or dealership diagnostic interface

Verify Fix Applied:

Verify firmware version has been updated to patched version through dealership diagnostic tools

📡 Detection & Monitoring

Log Indicators:

Unusual USB connection attempts
Profile import/export failures
System crashes during USB operations

Network Indicators:

Unexpected USB device enumeration
Suspicious USB data transfers

SIEM Query:

Not applicable - primarily physical/local attack vector

📊 Metadata

CVE ID: CVE-2023-34399

CVSS v3 Score: 9.8 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-190

EPSS Score: 0.2% exploit probability (42.2th percentile)

Published: February 13, 2025

Last Updated: June 27, 2025

🔗 References

https://securelist.com/mercedes-benz-head-unit-security-research/115218/ Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-34399, you might also want to check these: