Browse all 12 CVE security advisories affecting Preh Car Connect GmbH (JOYNEXT GmbH). AI-powered Chinese analysis, POCs, and references for each vulnerability.
Preh Car Connect GmbH (JOYNEXT GmbH) specializes in automotive connectivity solutions, providing telematics and infotainment systems for vehicle manufacturers. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from inadequate input validation and insecure authentication mechanisms. The company has recorded 12 CVEs to date, with vulnerabilities frequently exposing connected vehicles to unauthorized access and potential compromise. While no major public incidents have been widely reported, the consistent pattern of security flaws in their connectivity platforms highlights ongoing challenges in securing automotive IoT ecosystems against evolving cyber threats.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-28902 | Denial of Service via integer underflow in picserver — Volkswagen MIB3 infotainment system MIB3 OI MQBCWE-191 | 3.3 | Low | 2025-06-28 |
| CVE-2023-28903 | Volkswagen MIB3 Infotainment 安全漏洞 — Volkswagen MIB3 infotainment system MIB3 OI MQBCWE-190 | 3.3 | Low | 2025-06-28 |
| CVE-2023-28904 | Bypass of secure boot process — Volkswagen MIB3 infotainment system MIB3 OI MQBCWE-120 | 5.2 | Medium | 2025-06-28 |
| CVE-2023-28905 | Heap buffer overflow in picserver — Volkswagen MIB3 infotainment system MIB3 OI MQBCWE-122 | 8.0 | High | 2025-06-28 |
| CVE-2023-28906 | Command injection in networking service — Volkswagen MIB3 infotainment system MIB3 OI MQBCWE-78 | 7.8 | High | 2025-06-28 |
| CVE-2023-28907 | A lack of access restrictions on internal memory regions — Volkswagen MIB3 infotainment system MIB3 OI MQBCWE-284 | 6.7 | Medium | 2025-06-28 |
| CVE-2023-28908 | Integer Overflow in Non-Fragmented Data Reception — Volkswagen MIB3 infotainment system MIB3 OI MQBCWE-190 | 5.4 | Medium | 2025-06-28 |
| CVE-2023-28909 | Integer Overflow Leading to MTU Bypass — Volkswagen MIB3 infotainment system MIB3 OI MQBCWE-190 | 8.0 | High | 2025-06-28 |
| CVE-2023-28910 | Disabled Abortion Flag — Volkswagen MIB3 infotainment system MIB3 OI MQBCWE-754 | 8.0 | High | 2025-06-28 |
| CVE-2023-28911 | Arbitrary Channel Disconnection Resulting in Denial of Service — Volkswagen MIB3 infotainment system MIB3 OI MQBCWE-20 | 6.5 | Medium | 2025-06-28 |
| CVE-2023-28912 | Cleartext Phonebook Information — Volkswagen MIB3 infotainment system MIB3 OI MQBCWE-312 | 5.7 | Medium | 2025-06-28 |
| CVE-2023-29113 | A lack of access control in custom IPC mechanism — Volkswagen MIB3 infotainment system MIB3 OI MQBCWE-284 | 6.3 | Medium | 2025-06-28 |
This page lists every published CVE security advisory associated with Preh Car Connect GmbH (JOYNEXT GmbH). Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.