Skoda and Volkswagen Cars May Be Susceptible to Hacking Due to Infotainment System Vulnerabilities

Skoda Superb's infotainment system may allow malicious actors unrestricted code execution access.

Advertisement
Written by Shaurya Tomer, Edited by Siddharth Suvarna | Updated: 13 December 2024 15:51 IST
Highlights
  • Researchers discover vulnerabilities in the Skoda infotainment systems
  • It may allow remote code execution and vehicle location tracking
  • Skoda claims vulnerabilities have been addressed and eliminated

Skoda Superb III is reported to be one of the models impact by the vulnerabilities

Photo Credit: Skoda

Security researchers have discovered vulnerabilities of low-to-medium criticality in select Skoda and Volkswagen cars that may enable malicious actors to trigger certain controls, a cybersecurity firm announced at the Black Hat Europe 2024 event this week. At least 12 new vulnerabilities were found impacting the infotainment systems in the latest model of Skoda Superb III — a D-segment sedan manufactured by the Volkswagen Group which entered production in 2015. Although threat actors would need to connect to the vehicle via Bluetooth to get access, the attack may be carried even from a distance.

This builds upon the previous discovery of nine security flaws in the same vehicle that were reported last year.

Vulnerabilities in Skoda Cars

Cybersecurity firm PCAutomotive published a report detailing the vulnerabilities discovered in the third-generation model of Skoda Superb. The German sedan's MIB3 infotainment system may allow malicious actors unrestricted code execution access, enabling them to run malicious code upon startup. It is said to provide remote access to the vehicle's systems.

Advertisement

They may be able to track its speed and location in real time, eavesdrop on the in-car microphone, play sounds, and control its infotainment system. Another flaw may allow them exfiltrate the phone contact database if contact synchronisation with the phone is enabled. Further, the vulnerabilities could also allow access to the CAN bus which is used to connect with the vehicle's electronic control units (ECUs).

Advertisement

Although there are many suppliers of the MIB3 infotainment system, the researchers specifically talk about the one manufactured by Preh Car Connect Gmbh. It impacts the following models:

  1. Skoda Superb III
  2. Skoda Karoq
  3. Skoda Kodiaq
  4. VW Areteon
  5. VW Tiguan
  6. VW Passat
  7. VW T-Roc
  8. VW T-Cross
  9. VW Polo
  10. VW Golf

The sales data suggests that a total of 1.4 million vehicles from the Volkswagen Group are at risk. PCAutomotive reported the vulnerabilities to Skoda as part of its cybersecurity disclosure program. In a statement given to TechCrunch, Skoda revealed that they have been addressed and eliminated. “At no time was and is there any danger to the safety of our customers or our vehicles”, the German automotive company said.

 
Post your comments

Catch the latest from the Consumer Electronics Show on Gadgets 360, at our CES 2026 hub.

Realme 14x 5G Confirmed to Pack 6,000mAh Battery; Charging Details Revealed
Naughty Dog Reveals Intergalactic: The Heretic Prophet, a New Sci-Fi Franchise for PS5
Advertisement

Related Stories

Astronomers Find ‘Mystery Engine’ Powering Massive Nebula Around a Dead Star, Challenging Physics
13 January 2026
Vivo V70 Series India Launch Timeline Leaked; Two Models Expected to Debut
13 January 2026
iPhone 17 Price in India Drops Under Rs. 75,000 Ahead of Flipkart Republic Day Sale 2026
13 January 2026
Best Earbuds Under Rs 3,000 in India: Oppo Enco Buds 3 Pro+, Redmi Buds 6 and More
13 January 2026
Slack Introduces Agentic AI: How the New Slackbot Automates Your Workflow
13 January 2026
Popular on Gadgets
Latest Gadgets
Popular Mobile Brands
#Trending Stories
  1. Flipkart Sale Early Deals: iPhone 17 Price in India Drops Under Rs. 75,000
  2. Samsung Galaxy A07 5G Launched With 6,000mAh Battery: Price, Features
  3. Here's When the Vivo V70 Series Could Launch in India
  4. Astronomers Find 'Mystery Engine' Powering Nebula Around a Dead Star
  5. Here Are Some of the Best Smartphones Available in India With AMOLED Displays
  6. Samsung Galaxy Z Flip 8 Could Miss Out on Major Camera Upgrades
  7. Realme Finally Confirms Neo 8 Launch Date in China
#Latest Stories
  1. Astronomers Find ‘Mystery Engine’ Powering Massive Nebula Around a Dead Star, Challenging Physics
  2. Vivo V70 Series India Launch Timeline Leaked; Two Models Expected to Debut
  3. iPhone 17 Price in India Drops Under Rs. 75,000 Ahead of Flipkart Republic Day Sale 2026
  4. Slack Introduces Agentic AI: How the New Slackbot Automates Your Workflow
  5. Arc Raiders' Sales Cross 12.4 Million Copies as Embark Studios Rolls Out New Update
  6. Space Gen: Chandrayaan OTT Release Date: When and Where to Watch Nakuul Mehta, Shriya Saran Starrer Online?
  7. Qubo Dashcam 4G Live Launched in India With Live GPS Tracking, Safety Alerts Alongside Dashcam Trio: Price, Features
  8. Samsung Galaxy Z Flip 8 to Reportedly Miss Out on Major Camera Upgrades; Specifications Leak
  9. Apple's iOS 26.3 Beta 2 Update Hints at End-to-End Encryption Support for RCS Messaging: Report
  10. Realme P Series Phone With 10,000mAh Battery Spotted on BIS Website; Could Launch in India Soon
Gadgets 360 is available in
Follow Us
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2026. All rights reserved.