Lucene search
K

41 matches found

NVD
NVD
added 2026/06/25 3:16 p.m.11 views

CVE-2026-49319

Remote Keyless Entry System RKES, using the 433 MHz key fob bearing FCC ID CWTR53R0 manufactured by ALPS ALPINE CO., LTD., is vulnerable to a roll-back attack against its rolling-code authentication. An attacker within RF range who records two consecutive lock or unlock transmissions from a...

6.9CVSS0.0024EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/25 2:11 p.m.8 views

CVE-2026-49319 Alps Electric Co., Ltd. R53R0 Remote Keyless Entry System (RKES) Replay Attack

Remote Keyless Entry System RKES, using the 433 MHz key fob bearing FCC ID CWTR53R0 manufactured by ALPS ALPINE CO., LTD., is vulnerable to a roll-back attack against its rolling-code authentication. An attacker within RF range who records two consecutive lock or unlock transmissions from a...

6.9CVSS5.9AI score0.0024EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/25 2:11 p.m.38 views

CVE-2026-49319 Alps Electric Co., Ltd. R53R0 Remote Keyless Entry System (RKES) Replay Attack

Remote Keyless Entry System RKES, using the 433 MHz key fob bearing FCC ID CWTR53R0 manufactured by ALPS ALPINE CO., LTD., is vulnerable to a roll-back attack against its rolling-code authentication. An attacker within RF range who records two consecutive lock or unlock transmissions from a...

6.9CVSS0.0024EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/25 2:11 p.m.8 views

EUVD-2026-39417

Remote Keyless Entry System RKES, using the 433 MHz key fob bearing FCC ID CWTR53R0 manufactured by ALPS ALPINE CO., LTD., is vulnerable to a roll-back attack against its rolling-code authentication. An attacker within RF range who records two consecutive lock or unlock transmissions from a...

6.9CVSS5.9AI score0.0024EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.27 views

PT-2026-52445

Name of the Vulnerable Software and Affected Versions Remote Keyless Entry System RKES using 433 MHz key fob FCC ID CWTR53R0 affected versions not specified Description The system is susceptible to a roll-back attack targeting its rolling-code authentication. An attacker within radio frequency...

6.9CVSS5.8AI score0.0024EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/02/15 11:7 a.m.33 views

CVE-2026-2541 Micca KE700 Brute-force vulnerability due to low entropy

The Micca KE700 system relies on a 6-bit portion of an identifier for authentication within rolling codes, providing only 64 possible combinations. This low entropy allows an attacker to perform a brute-force attack against one component of the rolling code. Successful exploitation simplify an...

6.4CVSS0.0019EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/15 11:7 a.m.3 views

CVE-2026-2541 Micca KE700 Brute-force vulnerability due to low entropy

The Micca KE700 system relies on a 6-bit portion of an identifier for authentication within rolling codes, providing only 64 possible combinations. This low entropy allows an attacker to perform a brute-force attack against one component of the rolling code. Successful exploitation simplify an...

6.4CVSS5.5AI score0.0019EPSS
Exploits0References1
CVE
CVE
added 2026/02/15 11:7 a.m.11 views

CVE-2026-2541

CVE-2026-2541 affects the Micca KE700 system. The vulnerability arises from using a 6-bit portion of an identifier for authentication within rolling codes, yielding only 64 possible combinations. This low entropy enables brute-force attempts against one component of the rolling code, allowing an ...

6.4CVSS5.5AI score0.0019EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/02/15 12:0 a.m.10 views

Micca KE700 安全漏洞

The Micca KE700 is a source bookshelf speaker produced by the Micca company. The Micca KE700 has a security vulnerability. This vulnerability arises from the fact that authentication is performed using only 6-bit identifiers in the rolling code. The low entropy value in this code can lead to...

6.4CVSS5.9AI score0.0019EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/12 12:0 a.m.5 views

D3D ZX-G12 安全漏洞

D3D ZX-G12 is a multi-functional smart home security alarm system from D3D India. A security vulnerability exists in D3D ZX-G12 v2.1.1, which stems from the lack of rolling code and anti-replay protection in the 433 MHz sensor communication channel, which could lead to a replay attack triggering ...

9.8CVSS6.8AI score0.00353EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2021-32845

Malicious code in bioql PyPI...

5.3CVSS5.7AI score0.03641EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2025-29238

Malicious code in bioql PyPI...

6.8CVSS6.6AI score0.00266EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/09/17 12:49 a.m.21 views

CVE-2025-56448

The Positron PX360BT SW REV 8 car alarm system is vulnerable to a replay attack due to a failure in implementing rolling code security. The alarm system does not properly rotate or invalidate used codes, allowing repeated reuse of captured transmissions. This exposes users to significant security...

6.8CVSS7AI score0.00266EPSS
Exploits1References1
NVD
NVD
added 2025/09/15 8:15 p.m.10 views

CVE-2025-56448

The Positron PX360BT SW REV 8 car alarm system is vulnerable to a replay attack due to a failure in implementing rolling code security. The alarm system does not properly rotate or invalidate used codes, allowing repeated reuse of captured transmissions. This exposes users to significant security...

6.8CVSS0.00266EPSS
Exploits1References2
OSV
OSV
added 2025/09/15 8:15 p.m.7 views

CVE-2025-56448

The Positron PX360BT SW REV 8 car alarm system is vulnerable to a replay attack due to a failure in implementing rolling code security. The alarm system does not properly rotate or invalidate used codes, allowing repeated reuse of captured transmissions. This exposes users to significant security...

6.8CVSS5.8AI score0.00266EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/09/15 12:0 a.m.3 views

CVE-2025-56448

The Positron PX360BT SW REV 8 car alarm system is vulnerable to a replay attack due to a failure in implementing rolling code security. The alarm system does not properly rotate or invalidate used codes, allowing repeated reuse of captured transmissions. This exposes users to significant security...

6.7AI score0.00266EPSS
Exploits1References2
CVE
CVE
added 2025/09/15 12:0 a.m.17 views

CVE-2025-56448

The CVE-2025-56448 entry concerns the Positron PX360BT SW REV 8 car alarm system. The provided documents state that the vulnerability arises from a failure to properly implement rolling-code security, allowing repeated use of captured transmissions and enabling a replay attack. Affected component...

6.8CVSS6.7AI score0.00266EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2025/09/15 12:0 a.m.6 views

Positron PX360BT 安全漏洞

Positron PX360BT is an in-vehicle multimedia device from the Brazilian company Positron. A security vulnerability exists in the Positron PX360BT that stems from a failure to properly implement a rolling code security mechanism, which could lead to a replay attack...

6.8CVSS6.8AI score0.00266EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/09/15 12:0 a.m.5 views

PT-2025-37755

Name of the Vulnerable Software and Affected Versions Positron PX360BT SW REV 8 Description The Positron PX360BT SW REV 8 car alarm system is vulnerable to a replay attack due to a failure in implementing rolling code security. The alarm system does not properly rotate or invalidate used codes,...

6.8CVSS6.6AI score0.00266EPSS
Exploits1References7
Cvelist
Cvelist
added 2025/09/15 12:0 a.m.12 views

CVE-2025-56448

The Positron PX360BT SW REV 8 car alarm system is vulnerable to a replay attack due to a failure in implementing rolling code security. The alarm system does not properly rotate or invalidate used codes, allowing repeated reuse of captured transmissions. This exposes users to significant security...

0.00266EPSS
Exploits1References2
Rows per page
Query Builder