{"vulnerability": "cve-2024-51072", "sightings": [{"uuid": "120fd8fc-1900-4fb6-af58-15c13fe92054", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-51072", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1152", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-51072\n\ud83d\udd39 Description: An issue in KIA Seltos vehicle instrument cluster with software and hardware v1.0 allows attackers to cause a Denial of Service (DoS) via ECU reset UDS service. NOTE: this is disputed by the Supplier because the findings came from a potentially unrealistic test environment (an isolated ECU part that was not in a vehicle), and because the ECUReset specification does not allow a manufacturer to require SecurityAccess and Authentication.\n\ud83d\udccf Published: 2024-11-22T00:00:00\n\ud83d\udccf Modified: 2025-01-10T14:21:13.205282Z\n\ud83d\udd17 References:\n1. https://www.iso.org/standard/77323.html\n2. https://udsoncan.readthedocs.io/en/latest/udsoncan/services.html\n3. https://github.com/nitinronge91/KIA-SELTOS-Cluster-Vulnerabilities/blob/628b1550f0093f79380929074b6a5e6ca6f2d04b/CVE/Denial%20of%20Service%20via%20ECU%20Reset%20Service%20For%20KIA%20SELTOS%20CVE-2024-51072.md", "creation_timestamp": "2025-01-10T15:04:33.000000Z"}]}