Code injection

2020-11-3022:15:00

PRIOn knowledge base

www.prio-n.com

6.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

40.8%

JSON

Tesla Model X vehicles before 2020-11-23 have key fobs that accept firmware updates without signature verification. This allows attackers to construct firmware that retrieves an unlock code from a secure enclave chip.

CPENameOperatorVersion
model_x_firmwareeq< 20201123

CPE	Name	Operator	Version
	model_x_firmware	eq	< 20201123

References

www.wired.com/story/tesla-model-x-hack-bluetooth/