Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2022-07638
HistoryJan 26, 2022 - 12:00 a.m.

TeslaMate Elevation of Privilege Vulnerability

2022-01-2600:00:00
China National Vulnerability Database
www.cnvd.org.cn
7

0.002 Low

EPSS

Percentile

64.6%

JSON

TeslaMate is an open source project, a self-hosted data logger for Tesla. versions prior to TeslaMate 1.25.1 contain an elevation of privilege vulnerability that stems from Tesla’s use of the default Docker configuration, which allows an attacker to use Grafana login access to obtain a token for Tesla API calls. An attacker could use the vulnerability to open the door of a Tesla vehicle, initiate Keyless Driving, and interfere with vehicle operation while driving.

CPENameOperatorVersion
teslamate teslamatelt1.25.1

Related

cve 2
nvd 2
prion 1
osv 1
cvelist 2
cve
cve
CVE-2022-23126
2022-01-24 19:15:08
CVE-2023-31634
2024-03-27 06:15:08
nvd
nvd
CVE-2022-23126
2022-01-24 19:15:08
CVE-2023-31634
2024-03-27 06:15:08
prion
prion
Open redirect
2022-01-24 19:15:00
osv
osv
CVE-2022-23126
2022-01-24 19:15:08
cvelist
cvelist
CVE-2022-23126
2022-01-24 18:07:18
CVE-2023-31634
2024-03-27 00:00:00

0.002 Low

EPSS

Percentile

64.6%

JSON
Related for CNVD-2022-07638
cve2nvd2prion1osv1cvelist2