Security Advisory

CVE-2023-28900

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-01-18 16:23:07

Last updated 2025-06-17 21:19:19

Assigner ASRG

State PUBLISHED

Description

The Skoda Automotive cloud contains a Broken Access Control vulnerability, allowing to obtain nicknames and other user identifiers of Skoda Connect service users by specifying an arbitrary vehicle VIN number.

← Browse all CVEs View on cve.org ↗