Merge pull request #516 from bugcrowd/QA-Checks

Fixed QA issues
bugcrowd · Nov 20, 2023 · 38d1c82 · 38d1c82
2 parents 82db8c5 + 026f2b8
commit 38d1c82
Show file tree

Hide file tree

Showing 48 changed files with 35 additions and 5 deletions.
diff --git a/...ty_misconfiguration/infotainment/.gitkeep → ...ion/infotainment_radio_head_unit/.gitkeep b/...ty_misconfiguration/infotainment/.gitkeep → ...ion/infotainment_radio_head_unit/.gitkeep
diff --git a/...ent/code_execution_can_bus_pivot/.gitkeep → ...nit/code_execution_can_bus_pivot/.gitkeep b/...ent/code_execution_can_bus_pivot/.gitkeep → ...nit/code_execution_can_bus_pivot/.gitkeep
diff --git a/.../code_execution_can_bus_pivot/template.md → .../code_execution_can_bus_pivot/template.md b/.../code_execution_can_bus_pivot/template.md → .../code_execution_can_bus_pivot/template.md
diff --git a/.../code_execution_no_can_bus_pivot/.gitkeep → .../code_execution_no_can_bus_pivot/.gitkeep b/.../code_execution_no_can_bus_pivot/.gitkeep → .../code_execution_no_can_bus_pivot/.gitkeep
diff --git a/...de_execution_no_can_bus_pivot/template.md → ...de_execution_no_can_bus_pivot/template.md b/...de_execution_no_can_bus_pivot/template.md → ...de_execution_no_can_bus_pivot/template.md
diff --git a/...infotainment/default_credentials/.gitkeep → ...io_head_unit/default_credentials/.gitkeep b/...infotainment/default_credentials/.gitkeep → ...io_head_unit/default_credentials/.gitkeep
diff --git a/...otainment/default_credentials/template.md → ...head_unit/default_credentials/template.md b/...otainment/default_credentials/template.md → ...head_unit/default_credentials/template.md
diff --git a/...iguration/infotainment/dos_brick/.gitkeep → ...inment_radio_head_unit/dos_brick/.gitkeep b/...iguration/infotainment/dos_brick/.gitkeep → ...inment_radio_head_unit/dos_brick/.gitkeep
diff --git a/...ration/infotainment/dos_brick/template.md → ...ent_radio_head_unit/dos_brick/template.md b/...ration/infotainment/dos_brick/template.md → ...ent_radio_head_unit/dos_brick/template.md
diff --git a/...misconfiguration/infotainment/guidance.md → .../infotainment_radio_head_unit/guidance.md b/...misconfiguration/infotainment/guidance.md → .../infotainment_radio_head_unit/guidance.md
diff --git a/...onfiguration/infotainment_radio_head_unit/ota_firmware_manipulation/guidance.md b/...onfiguration/infotainment_radio_head_unit/ota_firmware_manipulation/guidance.md
@@ -0,0 +1,5 @@
+# Guidance
+
+Provide a step-by-step walkthrough with a screenshot on how you exploited the vulnerability. Your submission must include evidence of the vulnerability and not be theoretical in nature. For an infotainment vulnerability, please include detailed instructions that can be followed to easily demonstrate and reproduce the issue. If data was found using Open Source Intelligence (OSINT), please provide steps to where and how it was found.
+
+Attempt to completely stop the vehicle from functioning if the infotainment system controls a mechanical aspect of the vehicle. If this is possible, provide a full Proof of Concept (PoC) here.
diff --git a/...onfiguration/infotainment_radio_head_unit/ota_firmware_manipulation/template.md b/...onfiguration/infotainment_radio_head_unit/ota_firmware_manipulation/template.md
@@ -0,0 +1,25 @@
+# OTA Firmware Manipulation
+
+## Overview of the Vulnerability
+
+The In-Vehicle Infotainment (IVI) system, is a central unit in an automotive vehicle's dashboard that centralizes information and entertainment systems and their controls. Misconfigurations in the IVI system can lead to security weaknesses. An attacker can take advantage of IVI misconfiguration and inject a payload into the IVI system, causing the system to not behave as intended.
+
+## Business Impact
+
+This IVI system misconfiguration can result in reputational damage and indirect financial loss for the business through the impact to customers’ trust in the security and safety of the automotive vehicle.
+
+## Steps to Reproduce
+
+1. The IVI system input is identified by using {{hardware}} on {{target}}
+1. Connect to {{target}} by using {{application}} with {{hardware}}
+1. Inject the following IVI system message payload:
+
+{{payload}}
+
+1. Observe that {{action}} occurs as a result
+
+## Proof of Concept (PoC)
+
+The image(s) below demonstrates the process by which an attacker identifies where the IVI system communication occurs. It also shows how an attacker connects to the {{target}}, and is able to inject the payload(s):
+
+{{screenshot}}
diff --git a/.../sensitive_data_leakage_exposure/.gitkeep → .../sensitive_data_leakage_exposure/.gitkeep b/.../sensitive_data_leakage_exposure/.gitkeep → .../sensitive_data_leakage_exposure/.gitkeep
diff --git a/...nsitive_data_leakage_exposure/template.md → ...nsitive_data_leakage_exposure/template.md b/...nsitive_data_leakage_exposure/template.md → ...nsitive_data_leakage_exposure/template.md
diff --git a/...on/infotainment/source_code_dump/.gitkeep → ...radio_head_unit/source_code_dump/.gitkeep b/...on/infotainment/source_code_dump/.gitkeep → ...radio_head_unit/source_code_dump/.gitkeep
diff --git a/...infotainment/source_code_dump/template.md → ...io_head_unit/source_code_dump/template.md b/...infotainment/source_code_dump/template.md → ...io_head_unit/source_code_dump/template.md
diff --git a/...misconfiguration/infotainment/template.md → .../infotainment_radio_head_unit/template.md b/...misconfiguration/infotainment/template.md → .../infotainment_radio_head_unit/template.md
diff --git a/.../unauthorized_access_to_services/.gitkeep → .../unauthorized_access_to_services/.gitkeep b/.../unauthorized_access_to_services/.gitkeep → .../unauthorized_access_to_services/.gitkeep
diff --git a/...authorized_access_to_services/template.md → ...authorized_access_to_services/template.md b/...authorized_access_to_services/template.md → ...authorized_access_to_services/template.md
diff --git a/...r_sensitive_data_information_int/.gitkeep → ...tion_iterable_object_identifiers/.gitkeep b/...r_sensitive_data_information_int/.gitkeep → ...tion_iterable_object_identifiers/.gitkeep
diff --git a/...ensitive_data_information_int/Guidance.md → ...n_iterable_object_identifiers/Guidance.md b/...ensitive_data_information_int/Guidance.md → ...n_iterable_object_identifiers/Guidance.md
diff --git a/...e_data_information_int/Recommendations.md → ...ble_object_identifiers/Recommendations.md b/...e_data_information_int/Recommendations.md → ...ble_object_identifiers/Recommendations.md
diff --git a/...ensitive_data_information_int/template.md → ...n_iterable_object_identifiers/template.md b/...ensitive_data_information_int/template.md → ...n_iterable_object_identifiers/template.md
@@ -1,4 +1,4 @@
-# Alter Sensitive Information - Iterable Object Identifiers
+# Edit/Delete Sensitive Information/Iterable Object Identifiers
 
 ## Overview of the Vulnerability
 

diff --git a/...ipulate_no_sensitive_information/.gitkeep → ...delete_non_sensitive_information/.gitkeep b/...ipulate_no_sensitive_information/.gitkeep → ...delete_non_sensitive_information/.gitkeep
diff --git a/...late_no_sensitive_information/Guidance.md → ...ete_non_sensitive_information/Guidance.md b/...late_no_sensitive_information/Guidance.md → ...ete_non_sensitive_information/Guidance.md
diff --git a/..._sensitive_information/Recommendations.md → ..._sensitive_information/Recommendations.md b/..._sensitive_information/Recommendations.md → ..._sensitive_information/Recommendations.md
diff --git a/...late_no_sensitive_information/template.md → ...ete_non_sensitive_information/template.md b/...late_no_sensitive_information/template.md → ...ete_non_sensitive_information/template.md
@@ -1,4 +1,4 @@
-# Manipulate Non-Sensitive Information
+# Read/Edit/Delete Non-Sensitive Information
 
 ## Overview of the Vulnerability
 

diff --git a/..._sensitive_data_information_guid/.gitkeep → ...elete_sensitive_information_guid/.gitkeep b/..._sensitive_data_information_guid/.gitkeep → ...elete_sensitive_information_guid/.gitkeep
diff --git a/...nsitive_data_information_guid/Guidance.md → ...te_sensitive_information_guid/Guidance.md b/...nsitive_data_information_guid/Guidance.md → ...te_sensitive_information_guid/Guidance.md
diff --git a/..._data_information_guid/Recommendations.md → ...itive_information_guid/Recommendations.md b/..._data_information_guid/Recommendations.md → ...itive_information_guid/Recommendations.md
diff --git a/...nsitive_data_information_guid/template.md → ...te_sensitive_information_guid/template.md b/...nsitive_data_information_guid/template.md → ...te_sensitive_information_guid/template.md
@@ -1,4 +1,4 @@
-# Manipulate Sensitive Information - GUID or Complex Object Identifiers
+# Read/Edit/Delete Sensitive Information/Complex Object Identifiers(GUID)
 
 ## Overview of the Vulnerability
 

diff --git a/...or/read_pii_data_information_int/.gitkeep → ...tion_iterable_object_identifiers/.gitkeep b/...or/read_pii_data_information_int/.gitkeep → ...tion_iterable_object_identifiers/.gitkeep
diff --git a/...read_pii_data_information_int/Guidance.md → ...n_iterable_object_identifiers/Guidance.md b/...read_pii_data_information_int/Guidance.md → ...n_iterable_object_identifiers/Guidance.md
diff --git a/...i_data_information_int/Recommendations.md → ...ble_object_identifiers/Recommendations.md b/...i_data_information_int/Recommendations.md → ...ble_object_identifiers/Recommendations.md
diff --git a/...read_pii_data_information_int/template.md → ...n_iterable_object_identifiers/template.md b/...read_pii_data_information_int/template.md → ...n_iterable_object_identifiers/template.md
@@ -1,4 +1,4 @@
-# Read Sensitive Information (PII) - Iterable Object Identifiers
+# Read/Edit/Delete Sensitive Information/Iterable Object Identifiers
 
 ## Overview of the Vulnerability
 

diff --git a/..._sensitive_data_information_int /.gitkeep → ...tion_iterable_object_identifiers/.gitkeep b/..._sensitive_data_information_int /.gitkeep → ...tion_iterable_object_identifiers/.gitkeep
diff --git a/...nsitive_data_information_int /Guidance.md → ...n_iterable_object_identifiers/Guidance.md b/...nsitive_data_information_int /Guidance.md → ...n_iterable_object_identifiers/Guidance.md
diff --git a/..._data_information_int /Recommendations.md → ...ble_object_identifiers/Recommendations.md b/..._data_information_int /Recommendations.md → ...ble_object_identifiers/Recommendations.md
diff --git a/...nsitive_data_information_int /template.md → ...n_iterable_object_identifiers/template.md b/...nsitive_data_information_int /template.md → ...n_iterable_object_identifiers/template.md
@@ -1,4 +1,4 @@
-# Read Sensitive Information - Iterable Object Identifiers
+# Read Sensitive Information/Iterable Object Identifiers
 
 ## Overview of the Vulnerability
 

diff --git a/...roken_cryptographic_primitive/guidance.md → ...roken_cryptographic_primitive/guidance.md b/...roken_cryptographic_primitive/guidance.md → ...roken_cryptographic_primitive/guidance.md
diff --git a/...ryptographic_primitive/recommendations.md → ...ryptographic_primitive/recommendations.md b/...ryptographic_primitive/recommendations.md → ...ryptographic_primitive/recommendations.md
diff --git a/...roken_cryptographic_primitive/template.md → ...roken_cryptographic_primitive/template.md b/...roken_cryptographic_primitive/template.md → ...roken_cryptographic_primitive/template.md
diff --git a/...nerable_cryptographic_library/guidance.md → ...nerable_cryptographic_library/guidance.md b/...nerable_cryptographic_library/guidance.md → ...nerable_cryptographic_library/guidance.md
diff --git a/..._cryptographic_library/recommendations.md → ..._cryptographic_library/recommendations.md b/..._cryptographic_library/recommendations.md → ..._cryptographic_library/recommendations.md
diff --git a/...nerable_cryptographic_library/template.md → ...nerable_cryptographic_library/template.md b/...nerable_cryptographic_library/template.md → ...nerable_cryptographic_library/template.md
diff --git a/...nel_attack/emanations_attack /guidance.md → ...nnel_attack/emanations_attack/guidance.md b/...nel_attack/emanations_attack /guidance.md → ...nnel_attack/emanations_attack/guidance.md
diff --git a/...ack/emanations_attack /recommendations.md → ...tack/emanations_attack/recommendations.md b/...ack/emanations_attack /recommendations.md → ...tack/emanations_attack/recommendations.md
diff --git a/...nel_attack/emanations_attack /template.md → ...nnel_attack/emanations_attack/template.md b/...nel_attack/emanations_attack /template.md → ...nnel_attack/emanations_attack/template.md