CVE-2019-12797

CVE-2019-12797

EPSS 1.2%

A clone version of an ELM327 OBD2 Bluetooth device has a hardcoded PIN, leading to arbitrary commands to an OBD-II bus of a vehicle.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.kth.se/polopoly_fs/1.914060.1561621279%21/Ludvig%20and%20Daniel_final_dongles.pdf https://www.kth.se/polopoly_fs/1.917488.1564430206%21/elm327.pdf