Lucene search

[email protected]NVD:CVE-2020-10558

HistoryMar 20, 2020 - 7:15 p.m.

CVE-2020-10558

2020-03-2019:15:12

[email protected]

web.nvd.nist.gov

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

41.0%

JSON

The driving interface of Tesla Model 3 vehicles in any release before 2020.4.10 allows Denial of Service to occur due to improper process separation, which allows attackers to disable the speedometer, web browser, climate controls, turn signal visual and sounds, navigation, autopilot notifications, along with other miscellaneous functions from the main screen.

Affected configurations

Nvd

Node

teslamodel_3_web_interfaceRange<2020.4.10

VendorProductVersionCPE
teslamodel_3_web_interface*cpe:2.3:a:tesla:model_3_web_interface:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
tesla	model_3_web_interface	*	cpe:2.3:a:tesla:model_3_web_interface::::::::

References

cylect.io/blog/Tesla_Model_3_Vuln/

safekeepsecurity.com/about/cve-2020-10558/

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

41.0%

JSON

Related for NVD:CVE-2020-10558

cvelist1 prion1 cve1 githubexploit1