Looking at the Attack Surfaces... Note

Looking at the Attack Surfaces of the Sony XAV-AX8500 Part 2

The Sony XAV-AX8500 head unit has a single USB-C port that supports wired Android Auto and Apple CarPlay, as well as playback of audio and video files from a USB flash drive. The supported audio file formats include MP3, WMA, AAC, ALAC, WAV, FLAC, and DSD, while supported video file formats include ASF, WMV, and AVI. The head unit also allows users to set the wallpaper by providing JPEG images on a flash drive, which can be a complex task. Firmware updates can be installed via a flash drive, and the next blog post will cover the XAV-AX8500 firmware in more detail. The head unit supports Bluetooth version 5, which is used for making phone calls, receiving phone calls, and playing audio from a paired mobile phone. Android Auto and Apple CarPlay also utilize Bluetooth to varying degrees. The head unit provides a Wi-Fi access point primarily used for wireless Android Auto and Apple CarPlay, and internal research has discovered a method to obtain the password. A port scan detected only TCP port 30515 as being open, which is not well-documented in the automotive industry. The head unit uses open-source software, including Python, Boost, Dropbear, Lame, and mpg123, which have published CVEs. The blog post aims to provide inspiration for vulnerability research and encourages researchers to investigate further.
CdXz5zHNQW_AJ86GPabrB.jpeg