NHTSA ID Number: 10165266
Manufacturer Communication Number: B651519
TSB/Document Date: 2019-09-23
Summary
SECURITY IMPROVEMENTS FOR CONNECTEDDRIVE. Security patches for non-safety critical vulnerabilities in BMW
head units Entry Nav Entry Media NBT and NBT EVO.
9/4/2019
65 15 19_SECURITY IMPROVEMENTS FOR CONNECTEDDRIVE
SIB 65 15 19
SECURITY IMPROVEMENTS FOR CONNECTEDDRIVE
2019-08-07
MODEL
Engineering
Designation
Model Description
Model Year
F01, F02
F04
F06
F07
F10
F12
F13
F15
F16
F22
F23
F25
F26
F30
F31
F32
F33
F34
F36
F39
F48
F80
F82
F83
F85
F86
F87
F90
G01
G02
G12
G30
G32
I01
I12
I15
7 Series Sedan including ALPINA B7
7 Series ActiveHybrid
6 Series Gran Coupe including ALPINA B6
5 Series Gran Turismo
5 Series Sedan
6 Series Convertible
6 Series Coupe
X5 Sport Activity Vehicle
X6 Sport Activity Coupe
2 Series Coupe
2 Series Convertible
X3 Sport Activity Vehicle
X4 Sport Activity Coupe
3 Series Sedan
3 Series Sports Wagon
4 Series Coupe
4 Series Convertible
3 Series Gran Turismo
4 Series Gran Coupe
X2 SAV
X1 SAV
M3 Sedan
M4 Coupe
M4 Convertible
X5 M SAV
X6 M SAC
M2 Coupe
M5 Sedan
X3 SAV
X4 SAC
7 Series Sedan including ALPINA B7
5 Series Sedan
6 Series Gran Turismo
i3
i8 Coupe
i8 Roadster
2011 to 2015
2011 to 2012
2013 to 2019
2011 to 2017
2011 to 2016
2012 to 2018
2012 to 2017
2014 to 2018
2015 to 2019
2014 to 2019
2015 to 2019
2011 to 2017
2015 to 2019
2012 to 2018
2014 to 2019
2014 to 2019
2014 to 2019
2014 to 2019
2015 to 2019
2018 and 2019
2016 to 2019
2015 to 2018
2015 to 2019
2015 to 2019
2015 to 2018
2015 to 2019
2016 to 2019
2018 and 2019
2018 and 2019
2019
2016 to 2019
2017 to 2019
2018 and 2019
2014 to 2019
2014 to 2019
2019
SITUATION
Security vulnerabilities in BMW infotainment control units have been identified in vehicles equipped with ID4
(Entry Nav or Entry Media or NBT) and ID5/ID6 (NBT EVO) head units.
Note: ID7 MGU (HU-H3 iDrive7 Media Graphics Unit) and Entry EVO Nav or Entry EVO Media are
not affected.
CAUSE
Copyright ©2019 BMW of North America, Inc.
1/6
9/4/2019
65 15 19_SECURITY IMPROVEMENTS FOR CONNECTEDDRIVE
A Chinese cybersecurity research team Tencent Keen Security Lab (“Tencent”) examined various BMW
models for potential security vulnerabilities from January 2017 to February 2018. They identified and informed
the BMW Group of 14 vulnerabilities, five of them remotely via a mobile communications base station that was
set up specifically for the research work.
The relevant configuration changes to the security parameters were transferred via the BMW Group IT back
end to the affected vehicles by means of "over the air" vehicle provisioning. In addition to the measures
already implemented via the ConnectedDrive back end, a software update is also available depending on the
head-unit generation.
The update measures mentioned below are available for vehicles with an active ConnectedDrive/telematics
services contract that are equipped with one of the following types of optional equipment:
SA6AE Teleservices
or
SA6NL Connect. Bluetooth and USB devices incl.
CORRECTION
Check and update head unit software
Install KISU update (Customer Initiated Software Update) depending on head unit installed as
outlined in the procedure below
PROCEDURE
Review and perform this procedure only on vehicles equipped with ID4 (Entry Nav or Entry Media or NBT)
and ID5/ID6 (NBT EVO) head units.
1. Check the I-level of the vehicle (AIR, Key read or Remote Key Read). Make note of the I-level.
2. Perform a vehicle test with ISTA. Once the vehicle test is performed, hover your mouse pointer over
the head unit as shown below. This provides the following details:
a. The head unit variant installed in the vehicle (arrow)
b. The HWEL (hardware electronics) number. If the vehicle is equipped with an RSE (Rear Seat
Entertainment), also check the last numbers starting with “RSE…” in the respective column below.
3. Is the HWEL version readout from the vehicle listed below for the corresponding head unit?
ID4 Entry Nav / Entry
Media
HWEL-0000116C
HWEL-0000116E
HWEL-00001703
HWEL-00001704
HWEL-00001705
HWEL-00001706
HWEL-000019F9
HWEL-000019FA
HWEL-000019FC
HWEL-0000274C
HWEL-0000274D
HWEL-0000274E
HWEL-0000274F
ID4 HU-H & HU-H Rear
Seat Entertainment
(RSE)
HWEL-00000DF5
HWEL-00000DF6
HWEL-00000DF7
HWEL-00000DF8
HWEL-00000DFF
HWEL-00001018
HWEL-00001019
HWEL-0000101A
HWEL-00001294
HWEL-00001295
HWEL-00001296
HWEL-000018C2
HWEL-000018C3
ID4 HU-H (EVO)
HWEL-000022E3
HWEL-000022E4
HWEL-000022E5
HWEL-000022E6
HWEL-000022E7
HWEL-000022E8
HWEL-000031DC
HWEL-000031DD
HWEL-000031DE
HWEL-000031DF
HWEL-000031E0
HWEL-000031E1
ID5 / ID6 NBTEVO &
Rear Seat
Entertainment (RSE)
HWEL-00002479
HWEL-0000247A
HWEL-0000247B
HWEL-000026B9
HWEL-000026BA
HWEL-000026BB
HWEL-00002AB8
HWEL-00002AB9
HWEL-00002C14
HWEL-00002FC2
HWEL-00002FC3
HWEL-00002FC4
HWEL-00002FC5
Copyright ©2019 BMW of North America, Inc.
2/6
9/4/2019
65 15 19_SECURITY IMPROVEMENTS FOR CONNECTEDDRIVE
HWEL-00002750
HWEL-00002753
HWEL-00002754
HWEL-00001170
HWEL-00001707
HWEL-00001708
HWEL-00001709
HWEL-000019F7
HWEL-000019F8
HWEL-000019FB
HWEL-00002746
HWEL-00002747
HWEL-00002748
HWEL-00002749
HWEL-0000274A
HWEL-0000274B
HWEL-00002751
HWEL-00002752
HWEL-00002755
HWEL-00001A41
HWEL-00001A42
HWEL-00001A43
HWEL-00001A44
HWEL-00001A45
RSE HWEL-00000E66
RSE HWEL-00000F5E
RSE HWEL-00000F5F
HWEL-00003A09
HWEL-00003A0A
HWEL-00003A0B
HWEL-00003A0C
HWEL-00003A0D
HWEL-00003A0E
RSE HWEL-00001EF7
RSE HWEL-00001EFB
a. Yes: Proceed to the steps below relating to the specific head unit installed in the vehicle being
serviced.
b. No: No further action is needed because the control module installed in the vehicle is not
affected.
Steps for ID4 (Entry Nav, Entry Media, HU-H & HU-H EVO) head units
4. Was the vehicle last treated with ISTA 4.16.1 or higher, and is the I-level 19-03-5xx or higher??
5. YES: The vehicle already has the software that provides the vehicle with added security measures
installed. Continue with step 7 below.
6. NO: Program and encode the vehicle using ISTA 4.16.1 or higher (released early March, 2019).
7. Download and install the “Customer initiated update software” (KISU software) in the vehicle.
a. Refer to the instructions below “updating KISU data”
Steps for ID5 / ID6 NBT EVO (HU-H2) head unit:
8. Was the vehicle last treated with ISTA 4.01.1 or higher and is the I-level 16-07-500 or higher??
9. YES: The vehicle already has the software that provides the vehicle with added security measures.
No further actions required.
10. NO: Program the vehicle with ISTA 4.01.1 or higher.
Note that ISTA will automatically reprogram and code all programmable control modules that do not have
the latest software.
Always connect a BMW approved battery charger/power supply (SI B04 23 10).
Copyright ©2019 BMW of North America, Inc.
3/6
9/4/2019
65 15 19_SECURITY IMPROVEMENTS FOR CONNECTEDDRIVE
For information on programming and coding with ISTA, refer to CenterNet / TIS / Technical Documentation
/ Vehicle Programming.
Steps for installing the Customer-initiated software update (KISU)
Downloading Customer-initiated software update on to a USB.
1. Prerequisites:
- USB stick with at least 500 MB of free memory and formatted as FAT16, FAT32 or NTFS filesystem.
- Access to a computer with internet access.
- The 17-digit vehicle identification number (VIN) of the customer vehicle.
2. Download software:
- Open the website: https://www.bmw.com/update
- Enter the 17-digit vehicle identification number (VIN).
- If the update is available, download the software (example: UPD 09042.bin) onto the USB stick.
3. Installation in the vehicle – updating of head unit:
- Vehicle must have the minimum I-level specified in this bulletin.
- Connect the USB in the center console of the vehicle.
- Then install the software in the vehicle ("iDrive settings" / "Software update").
WARRANTY INFORMATION
Covered, one-time, under the terms of the BMW New Vehicle Limited Warranty for Passenger Cars and Light
Trucks.
Defect Code:
8411900100
The vehicle is already in the workshop, or if applicable, completion before the first delivery of the
vehicle
Work Pkg
Labor Operation:
Labor Allowance:
Description (Plus work):
#1
00 66 667
Refer to AIR
Programming and encoding the vehicle only
(includes connecting an approved battery
charger/power supply and performing a vehicle
test)
00 66 668
Refer to AIR
Programming and encoding the vehicle (includes
connecting an approved battery charger/power
supply and performing a vehicle test) and
installing customer-initiated software update
(KISU data)
00 66 669
Refer to AIR
Installing customer-initiated software update
(KISU data) (The vehicle is already at the
specified Target integration level or higher)
Or:
#2
Or:
#3
Copyright ©2019 BMW of North America, Inc.
4/6
9/4/2019
65 15 19_SECURITY IMPROVEMENTS FOR CONNECTEDDRIVE
If you are using a Main labor code for another repair, use the Plus code labor operation above that applies
instead of the Main labor code.
Or:
The vehicle arrives at your center, this action applies and it has not been previously performed (No
other Main work will be performed/claimed during this workshop visit)
Work Pkg
Labor Operation:
Labor Allowance:
Description (Main work):
#4
00 66 090
Refer to AIR
Programming and encoding the vehicle only
(includes connecting an approved battery
charger/power supply and performing a vehicle
test)
00 66 091
Refer to AIR
Programming and encoding the vehicle (includes
connecting an approved battery charger/power
supply and performing a vehicle test) and
installing customer-initiated software update
(KISU data)
00 66 092
Refer to AIR
Installing customer-initiated software update
(KISU data) (The vehicle is already at the
specified Target integration level or higher)
Or:
#5
Or:
#6
Refer to AIR for the corresponding flat rate unit (FRU) allowances.
During the same workshop visit, if a vehicle also requires another Technical Campaign or repair that also
includes programming and encoding the control units, the programming procedure may only be
invoiced one time.
Claim Repair Comments
Unless additional related/in conjunction work was required (not addressed and/or included in one of the
options provided above), then only reference the SIB number and the work package (Pkg) number performed
in the RO technician notes and in the claim comments (For example: B65 15 19 WP 1).
Programming and Encoding - Vehicle Control Units (RO and Claim Comments Required)
The programming procedure automatically reprograms and encodes all vehicle control modules which do not
have the latest software i-level. If one or more control module failures occur during this programming
procedure:
Please claim this consequential control module-related repair work under the defect code listed in this
bulletin with the applicable AIR labor operations.
Please explain this additional work (The why and what) on the repair order and in the claim comments
section.
For control module failures that occurred prior to performing this programming procedure:
When covered under an applicable limited warranty, claim this control module-related repair work using
the applicable defect code and labor operations (including diagnosis) in AIR.
Supporting Materials
Copyright ©2019 BMW of North America, Inc.
5/6
9/4/2019
65 15 19_SECURITY IMPROVEMENTS FOR CONNECTEDDRIVE
picture_as_pdf B651519_Q_A attachment.pdf
Copyright ©2019 BMW of North America, Inc.
6/6
Attachment to B651519
August 2019
Q&A – Security Vulnerabilities in Vehicles
equipped with ConnectedDrive
1. What vulnerabilities were identified?
Potential vulnerabilities were identified in BMW Vehicles by Tencent’s Keen Security Lab
(“Tencent’) during extensive testing and research of the BMW ConnectedDrive system and
related infotainment components in the vehicle.
2. What Was the Risk?
No drivers or road users were ever at risk. Tencent research showed, that a successful
exploitation of the vulnerabilities required among other things, mastering a long, complex exploit
chain, access to specific vehicle components, action by the attacker as well as the driver, in order
to pose a risk. Some of the vulnerabilities also required a physical connection, which required an
adversary to gain access to the vehicle’s interior.
3. How were the vulnerabilities addressed?
Countermeasures were developed and rolled out via BMW Group systems to vehicles by overthe air updates. Additional software updates are available at BMW centers to close potential
non-critical vulnerabilities and increase the vehicle’s overall robustness.
4. Are the vehicles still at risk?
Remote vulnerabilities were remediated with the highest priority. BMW has also issued optional
security updates which are available at BMW centers. Please contact your local BMW center for
further information.
5. As a customer, how can I find out if my car is affected or if it needs an update?
Only vehicles equipped with ConnectedDrive were affected. Fixes for remote vulnerabilities
were already rolled out via the BMW Group backend servers systems to vehicles by over-the-air
mobile connection. Vehicles built in model year 2019 and later have the latest updates installed.
In addition, security patches in the form of software updates are available for non-critical
vulnerabilities. These updates are available for the applicable BMW models at BMW centers and
can be installed at your next regular service visit.
7. What risks remain after all the countermeasures have been implemented?
The vulnerabilities no longer pose a risk.
- 【Looking for More Professional Vehicle Scan...
- 【OE-Level 4 Systems OBD2 Scanner】iCarsoft E...
- 【4 Systems Diagnosis for 10000+ Vehicles】 iCarsoft E...
- 【6 Reset Services】iCarsoft E660 2026 Upgrade Version is...
- 【118+ Real Time Record & Live Graph View】iCarsoft E...
Last update on 2026-06-13 / Affiliate links / Images from Amazon Product Advertising API
If the PDF is very large, it may not load in the preview below.
Some older TSBs had multiple PDFs — visit the NHTSA Website to view all PDFs.
If the TSB PDF does not show, download or view it on the NHTSA Website.
Click on the (+) Plus Sign
Then Click on Associated Document(s)
Search NHTSA Database for Recalls
Search NHTSA Database for Vehicle Investigations
View Latest Vehicle Investigations
Search NHTSA Database for Vehicle Complaints
View Latest Vehicle Complaints
TSB/Document ID: B651519
Replacement Service Bulletin Number:
MFR Communication Date: 2019-08-01
MFR Internal Campaign ID/Software Version:
Communication Type: Service Bulletin/Repair Instructions
NHTSA Components: EQUIPMENT
MFR Component System:
MFR Component Subsystem:
Previous TSB | Next TSB |
- 2026 ALL-IN-ONE HEAVY DUTY TRUCK SCANNER – BUILT FOR DIESEL DIAGNOSTICS:The ANCEL X7HD PRO combines full-system diagnostics, bi-directional control, ECU coding, HDOBD/OBD2 functions, and 42+ reset services in one powerful heavy duty truck scanner. This diesel scan tool helps technicians, fleet owners, and repair shops diagnose problems faster, reduce downtime, and complete more repairs without switching between multiple truck diagnostic tools. Features a 10.1" Android tablet, Bluetooth & Wi-Fi, live data graphing, and 2 years of f-ree updates
- 42+ RESET FUNCTIONS – MORE THAN A BASIC TRUCK CODE READER:Perform essential service functions including forced DPF regeneration, injector coding, speed limiter adjustment, idle adjustment, oil reset, ABS reset, SRS reset, EPB reset, throttle reset, and suspension calibration. Designed for real truck maintenance and fleet service, this commercial truck diagnostic scanner helps reduce dealer visits, avoid unnecessary downtime, and handle more repair jobs with one diesel diagnostic tool
- ACTIVE TEST & ECU CODING – ADVANCED BIDIRECTIONAL SCAN TOOL FOR TRUCKS:Quickly locate faults by activating components and sending commands directly to vehicle systems. Test injectors, ABS, throttle, cooling systems, and other modules in real time without unnecessary disassembly. ECU coding and module matching help adapt replacement parts, restore factory settings, and reduce repeat repairs, making this semi truck scan tool ideal for advanced troubleshooting and daily shop work
- FULL-SYSTEM HDOBD/OBD2 DIAGNOSTICS – WIDE TRUCK & ENGINE COVERAGE:Read and clear codes, monitor live data, freeze frame, and diagnose engine, transmission, ABS, body, and other major systems. Compatible with Freightliner
, Kenworth, Peterbilt, Volvo, Mack, International, and other commercial truck brands, plus Cummins, Caterpillar, Detroit, Paccar, and Navistar diesel engines. Also supports full OBD2/EOBD diagnostics for standard vehicles, making it a versatile truck obd2 scanner for mixed fleets and repair shops - PROFESSIONAL HARDWARE + RELIABLE SUPPORT – BUILT FOR DAILY SHOP USE:This professional diesel diagnostic computer features a 10.1" touchscreen, Android 10.0 system, 6000mAh battery, Bluetooth/Wi-Fi connectivity, and built-in front & rear cameras for documenting repairs and remote troubleshooting. Includes 2 years of fr-ee updates, 1-year w-arranty, and responsive technical support. Contact [email protected] before purchase to confirm compatibility and supported functions for your truck or diesel engine
- 【Built for Heavy Duty Diesel Diagnostics】Designed for SAE J1939 and J1708 compliant trucks, buses, and diesel-powered commercial vehicles. HD601 truck scanner diagnostic tool helps owner-operators, small fleets, mobile technicians, and independent repair shops quickly identify fault codes, view live data, and make informed repair decisions—saving time, reducing downtime, and avoiding unnecessary shop visits
- 【Full System Diagnostics+All HD OBD Modes】The New HD601 heavy duty truck scanner delivers full-system diagnostics on SAE J1939 and J1708-compliant commercial vehicles—digging into engine, transmission, ABS, fuel, every system that keeps your rig rolling. It supports all HD OBD modes, giving you live data, freeze frame, ECU info, vehicle info, emissions data tracking, plus code reading and clearing. Not just what broke, but why—so you fix it right the first time. Pinpoint issues faster, cut repair costs, and spend less time on the shoulder
- 【Wide Heavy-Duty Vehicle Coverage】Supports a wide range of heavy-duty vehicle manufacturers and systems, including Freightliner, Kenworth, Peterbilt, Volvo, International, Detroit, Cummins, Paccar, Allison, Eaton, Bendix, Wabco, and more. Coverage varies by vehicle make, model, year, and system configuration. Contact our support team before purchase if compatibility verification is needed
- 【Speaks Major Truck Protocol】The New HD601 diesel truck scanner is built for American-made trucks—and supports the heavy‑duty protocols you' re most likely to run into on the road: SAE J1939, J1708/J1587, ISO 15765‑4, ISO 14230‑4, ISO 9141‑2, J1850 PWM/VPW, ISO 27145‑4, and EURO‑6. For most trucks, model years, and systems, it speaks the language your vehicle understands. Just plug it in and start diagnosing—no guesswork, no gatekeeping. Note: vehicle functions and module availability may vary by manufacturer and model year
- 【Save Hundreds on Diagnostic Fees】Why pay $150–300 for someone to read your codes? With the New ANCEL heavy duty truck scanner, you can pull fault codes yourself—in minutes, without leaving the truck. One or two uses pays for the tool. After that, every diagnostic is money back in your pocket. Smart investment for owner-operators, techs, and small fleets. Read and clear stored fault codes in minutes. Active fault codes may require repairs before they can be cleared
- 【One Tool, Total Fleet Coverage: 6/9/16 Pin Ready】Featuring an integrated 16-pin OBD2 connector and professional-grade 6-pin & 9-pin adapters, this heavy duty truck scanner provides extensive support for J1939, J1708, J1587, ISO 14230-4, ISO 15765-4 and ISO 9141-2, ISO 27145-4 protocols. It offers reliable diagnostic coverage for major American diesel brands—including Cummins, Paccar, Caterpillar, Detroit, and Freightliner—making it a versatile semi truck scanner for managing any diverse fleet.
- 【2 in 1 Diesel Code Reader & Advanced HD OBDII】Equipped with professional-grade diesel scanner capabilities, the HD301 features intuitive Read/Erase codes and turn off the "Check Engine" light. With the built-in DTC Lookup library, you can instantly access fault code definitions on-device without searching the internet. It also retrieves hundreds of essential live sensor data—such as coolant temperature, fuel pressure, and engine RPM—in a stable text format for precise and rapid troubleshooting. (Please note that the HD301 can not support DPF Regen.)
- 【Full System Truck Diagnostic】The FOXWELL HD301 heavy duty scan tool is engineered to deeply access and scan all available electronic control modules specifically for truck, including Engine, Transmission, ABS, SRS, Chassis, and Body Control. This professional truck scanner diagnostic tool allows you to identify issues across the entire vehicle, ensuring your rig stays in peak condition for the long haul.
- 【Versatile for most big Rigs: Commercial, Passenger & Beyond】Engineered for more than just trucks, this heavy duty scan tool offers extensive coverage for pickups, buses, trailers, and even marine vessels. From construction machinery (excavators, loaders) to agricultural equipment (tractors, harvesters), it provides a true all-in-one diagnostic solution.
- 【Plug-and-Play & No Subscription】Designed for the road! No WiFi, no batteries, and no complex App setup required. Simply plug it into your vehicle’s diagnostic port to start scanning immediately. Enjoy lifetime free software updates to keep your HD301 diesel truck scanner current with the latest vehicle models and features—without any hidden subscription fees—While overcoming language barriers with support for Spanish and English.
Last update on 2026-06-12 / Affiliate links / Images from Amazon Product Advertising API
This product presentation was made with AAWP plugin.