Lucene search
PRIOn knowledge basePRION:CVE-2022-37305HistoryAug 24, 2022 - 6:15 a.m.
Design/Logic Flaw
2022-08-2406:15:00
PRIOn knowledge base
www.prio-n.com
5
logic flaw
remote keyless entry
honda
rollback attack
security vulnerability
The Remote Keyless Entry (RKE) receiving unit on certain Honda vehicles through 2018 allows remote attackers to perform unlock operations and force a resynchronization after capturing five consecutive valid RKE signals over the radio, aka a RollBack attack. The attacker retains the ability to unlock indefinitely.
| CPE | Name | Operator | Version |
|---|---|---|---|
| honda_firmware | le | 2018 |
References
hackaday.com/2022/08/17/rollback-breaks-into-your-car/
medium.com/codex/rollback-a-new-time-agnostic-replay-attack-against-the-automotive-remote-keyless-entry-systems-df5f99ba9490
www.blackhat.com/us-22/briefings/schedule/
www.pcmag.com/news/is-your-car-key-fob-vulnerable-to-this-simple-replay-attack
www.youtube.com/playlist?list=PLYodcy84oQL1gxwiuRm13xRXxTQL9cO5t
Related
cvelist
cvelist
CVE-2022-37305
2022-08-24 05:05:40
nvd
nvd
CVE-2022-37305
2022-08-24 06:15:07
cve
cve
CVE-2022-37305
2022-08-24 06:15:07