Embedded System Vulnerabilities
A focused list of vulnerabilities relevant to embedded and IoT devices.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2023-28906 | A command injection in the networking service of the MIB3 infotainment allows an attacker already presenting in the sys… | High (7.8) | 2025-06-28 | Embedded |
| CVE-2023-28905 | A heap buffer overflow in the image processing binary of the MIB3 infotainment unit allows an attacker to execute arbit… | High (8.0) | 2025-06-28 | Embedded |
| CVE-2023-28904 | A logic flaw leading to a RAM buffer overflow in the bootloader component of the MIB3 infotainment unit allows an attac… | Medium (5.2) | 2025-06-28 | Embedded |
| CVE-2023-28902 | An integer underflow in the image processing binary of the MIB3 infotainment unit allows an attacker with local access … | Low (3.3) | 2025-06-28 | Embedded |
| CVE-2025-53098 | Roo Code is an AI-powered autonomous coding agent. The project-specific MCP configuration for the Roo Code agent is sto… | High (8.1) | 2025-06-27 | Embedded |