← Back to home
ICSA-17-115-03  ·  Published 2017-04-25  ·  View on CISA ICS-CERT ↗

Hyundai Motor America Blue Link

CVSS 7.5 HIGH

Risk Summary

ATTENTION: Remotely exploitable

CVEs (2)

Remediations

  • Hyundai Motor America released Blue Link, Version 3.9.6, a mandatory update to the application, which mitigates the aforementioned vulnerabilities on March 6, 2017, for Android devices and March 8, 2017, for iOS devices.
  • Rapid7 has released a security advisory that can be found at https://community.rapid7.com/community/infosec/blog/2017/04/25/r7-2017-02-hyundai-blue-link-potential-info-disclosure-fixed

Affected Vendors

Hyundai Motor America

Affected Products (2)

Hyundai Motor America · Blue Link 3.9.4
Hyundai Motor America · Blue Link 3.9.5

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more