Lucene search
+L

171 matches found

CNNVD
CNNVD
added 2022/03/23 12:0 a.m.6 views

Honda Civic 安全漏洞

Honda Civic is an automobile from Honda Japan. The Honda Civic 2018 model year has a security vulnerability in the remote keyless system that stems from the remote keyless system sending the same RF signal for every door open request, which allows replay attacks, related to CVE-2019-20626...

5.3CVSS6.2AI score0.01083EPSS
Exploits2References7
AlpineLinux
AlpineLinux
added 2022/02/18 9:30 p.m.55 views

CVE-2022-23649

Cosign provides container signing, verification, and storage in an OCI registry for the sigstore project. Prior to version 1.5.2, Cosign can be manipulated to claim that an entry for a signature exists in the Rekor transparency log even if it doesn't. This requires the attacker to have pull and...

3.3CVSS3.5AI score0.00163EPSS
Exploits0
NVD
NVD
added 2022/01/24 7:15 p.m.25 views

CVE-2022-23126

TeslaMate before 1.25.1 when using the default Docker configuration allows attackers to open doors of Tesla vehicles, start Keyless Driving, and interfere with vehicle operation en route. This occurs because an attacker can leverage Grafana login access to obtain a token for Tesla API calls...

9.8CVSS0.02208EPSS
Exploits0References5
Prion
Prion
added 2022/01/24 7:15 p.m.20 views

Open redirect

TeslaMate before 1.25.1 when using the default Docker configuration allows attackers to open doors of Tesla vehicles, start Keyless Driving, and interfere with vehicle operation en route. This occurs because an attacker can leverage Grafana login access to obtain a token for Tesla API calls...

7.5CVSS9.2AI score0.02208EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2022/01/24 6:7 p.m.154 views

CVE-2022-23126

TeslaMate prior to 1.25.1 (default Docker config) is vulnerable: an attacker can leverage Grafana login access to obtain a Tesla API token, enabling door opening, initiating Keyless Driving, and interference with vehicle operation en route. Affected component: the TeslaMate Docker deployment; roo...

9.8CVSS9.2AI score0.02208EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2022/01/24 6:7 p.m.29 views

CVE-2022-23126

TeslaMate before 1.25.1 when using the default Docker configuration allows attackers to open doors of Tesla vehicles, start Keyless Driving, and interfere with vehicle operation en route. This occurs because an attacker can leverage Grafana login access to obtain a token for Tesla API calls...

9.5AI score0.02208EPSS
Exploits0References5
OSV
OSV
added 2022/01/24 6:7 p.m.18 views

CVE-2022-23126

TeslaMate before 1.25.1 when using the default Docker configuration allows attackers to open doors of Tesla vehicles, start Keyless Driving, and interfere with vehicle operation en route. This occurs because an attacker can leverage Grafana login access to obtain a token for Tesla API calls...

9.8CVSS6.7AI score0.02208EPSS
Exploits0References7
CNNVD
CNNVD
added 2021/06/18 12:0 a.m.12 views

Arch Linux 资源管理错误漏洞

Arch Linux is an application system from Arch Open Source. A lightweight and flexible Linux® distribution that tries to keep it simple. Arch Linux suffers from a Resource Management Error vulnerability that stems from improper internal resource management in naive's keyless hash function. A remot...

7.5CVSS7.9AI score0.01608EPSS
Exploits0References8
ThreatPost
ThreatPost
added 2020/11/24 12:59 p.m.87 views

Tesla Hacked and Stolen Again Using Key Fob

Researchers have demonstrated for the third time how hacking into the key fob of a Tesla can allow someone to access and steal the car in minutes. The new attack again shows a security vulnerability in the keyless entry system of one of the most expensive electric vehicles EVs on the market...

0.4AI score0.65907EPSS
Exploits0References9
NVD
NVD
added 2020/03/23 5:15 p.m.27 views

CVE-2019-20626

The remote keyless system on Honda HR-V 2017 vehicles sends the same RF signal for each door-open request, which might allow a replay attack...

6.5CVSS5.5AI score0.00715EPSS
Exploits1References2
Prion
Prion
added 2020/03/23 5:15 p.m.20 views

Open redirect

The remote keyless system on Honda HR-V 2017 vehicles sends the same RF signal for each door-open request, which might allow a replay attack...

3.3CVSS5.5AI score0.00715EPSS
Exploits1References2
CVE
CVE
added 2020/03/23 4:12 p.m.85 views

CVE-2019-20626

CVE-2019-20626 affects Honda/Honda HR-V 2017 remote keyless systems where the door-open request reuses the same RF signal, enabling a replay attack. The connected Red Hat entries corroborate a related issue in Honda HR-V/Civic lines and describe the underlying cause as transmitting an unencrypted...

6.5CVSS6AI score0.00715EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2020/03/23 4:12 p.m.43 views

CVE-2019-20626

The remote keyless system on Honda HR-V 2017 vehicles sends the same RF signal for each door-open request, which might allow a replay attack...

5.6AI score0.00715EPSS
Exploits1References2
Zero Science Lab
Zero Science Lab
added 2019/05/13 12:0 a.m.91 views

SOCA Access Control System 180612 Information Disclosure

Summary The company's products include proximity and fingerprint access control system, time and attendance, electric locks, card reader and writer, keyless entry system and other 30 specialized products. All products are attractively designed with advanced technology in accordance with users'...

7.5CVSS5.8AI score0.00308EPSS
Exploits1
0day.today
0day.today
added 2019/05/13 12:0 a.m.58 views

SOCA Access Control System 180612 - Information Disclosure

Exploit for php platform in category web applications SOCA Access Control System 180612 Information Disclosure Vendor: SOCA Technology Co., Ltd Product web page: http://www.socatech.com Affected version: 180612, 170000 and 141007 Summary: The company's products include proximity and fingerprint...

7.4AI score
Exploits0
Pen Test Partners Blog
Pen Test Partners Blog
added 2019/03/08 6:0 a.m.114 views

Gone in six seconds? Exploiting car alarms

Key relay attacks against keyless entry vehicles are well known. Many 3rd party car alarm vendors market themselves as solutions to this. We have shown that fitting these alarms can make your vehicle EVEN LESS SECURE! These alarms can expose you to hijack, may allow your engine to be stopped whil...

7.3AI score
Exploits0
Cvelist
Cvelist
added 2018/09/10 11:0 p.m.18 views

CVE-2018-16806

A Pektron Passive Keyless Entry and Start PKES system, as used on the Tesla Model S and possibly other vehicles, relies on the DST40 cipher, which makes it easier for attackers to obtain access via an approach involving a 5.4 TB precomputation, followed by wake-frame reception and two...

6.5AI score0.0047EPSS
Exploits1References1
CVE
CVE
added 2018/09/10 11:0 p.m.54 views

CVE-2018-16806

The CVE-2018-16806 entry concerns a Pektron Passive Keyless Entry and Start (PKES) system used in the Tesla Model S (and possibly other vehicles) that relies on the DST40 cipher. The vulnerability is described as enabling an attacker to clone a key fob within a few seconds after a 5.4 TB precompu...

6.5CVSS6.4AI score0.0047EPSS
Exploits1References1Affected Software1
HackRead
HackRead
added 2018/05/29 11:23 a.m.30 views

Watch thieves steal keyless Mercedes within 23 seconds

By Waqas As recently as May 17th, 2018, a security camera recorded This is a post from HackRead.com Read the original post: Watch thieves steal keyless Mercedes within 23 seconds...

2.1AI score
Exploits0
Kitploit
Kitploit
added 2018/01/14 8:30 p.m.87 views

RFCrack - A Software Defined Radio Attack Tool

RFCrack is my personal RF test bench, it was developed for testing RF communications between any physical device that communicates over sub Ghz frequencies. IoT devices, Cars, Alarm Systems etc... Testing was done with the Yardstick One on OSX, but RFCrack should work fine in linux. Support for...

7.2AI score
Exploits0References1
Rows per page
Query Builder