Carplay Communication Plug-in CVEs and Security Vulnerabilities

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Export CSV

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2025-30422	1 Apple	3 Airplay Audio Software Development Kit, Airplay Video Software Development Kit, Carplay Communication Plug-in	2026-04-02	6.5 Medium
A buffer overflow was addressed with improved input validation. This issue is fixed in AirPlay audio SDK 2.7.1 and AirPlay video SDK 3.6.0.126. An attacker on the local network may cause an unexpected app termination.
CVE-2025-24132	1 Apple	3 Airplay Audio Software Development Kit, Airplay Video Software Development Kit, Carplay Communication Plug-in	2026-04-02	6.5 Medium
The issue was addressed with improved memory handling. This issue is fixed in AirPlay audio SDK 2.7.1 and AirPlay video SDK 3.6.0.126. An attacker on the local network may cause an unexpected app termination.

Page 1 of 1.