2021 Honda Civic infotainment system can be jailbroken via USB — flaw uses public Android test keys to install unauthorized apps, enables for 'EvilValet' attacks
A software architect determined that they could practically install anything they want on the infotainment system of their 2021 Honda Civic through the front USB port. While the head unit required a signed AOSP file to update itself, the AOSP test key is publicly known, meaning anyone with the knowledge could potentially build their own update file and load it with malware.
A software architect discovered a security flaw in the 2021 Honda Civic's infotainment system. The system allows unauthorized software installation through the USB port. The flaw exploits publicly available Android test keys. This enables the installation of malicious applications. The vulnerability could be used for malicious purposes. It highlights potential risks in vehicle software security. Owners should be aware of the risks associated with this flaw.
It raises concerns about vehicle security and the potential for malicious attacks.
📌 Kaynak
Bu özet World kaynağından otomatik derlenmiştir. Tamamı için orijinal habere gidin.
Orijinal haberi oku →