Lucene search
K

171 matches found

CVE
CVE
added 2022/08/24 5:5 a.m.66 views

CVE-2022-37305

Summary: CVE-2022-37305 affects Honda vehicles up to 2018 and concerns the Remote Keyless Entry (RKE) receiving unit. The root cause is a RollBack-like vulnerability where an attacker, after capturing five consecutive valid RKE signals transmitted over RF, can remotely unlock the vehicle and forc...

6.4CVSS6.5AI score0.00895EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2022/08/24 5:1 a.m.60 views

CVE-2022-36945

The CVE-2022-36945 entry concerns Mazda vehicles’ Remote Keyless Entry (RKE) receiving unit up to 2020. The root issue is a RollBack attack that, after three consecutive valid key-fob signals, allows a remote attacker to unlock and force resynchronization, with the attacker retaining unlock capab...

6.4CVSS6.5AI score0.00895EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2022/08/24 5:1 a.m.23 views

CVE-2022-36945

The Remote Keyless Entry RKE receiving unit on certain Mazda vehicles through 2020 allows remote attackers to perform unlock operations and force a resynchronization after capturing three consecutive valid key-fob signals over the radio, aka a RollBack attack. The attacker retains the ability to...

6.7AI score0.00895EPSS
Exploits1References5
CNNVD
CNNVD
added 2022/08/24 12:0 a.m.2 views

Remote Keyless Entry 安全漏洞

Remote Keyless Entry RKE is a system used to remotely lock and unlock a vehicle. The Remote Keyless Entry RKE receiving unit on certain Mazda vehicles 2020 and prior versions has a security vulnerability that stems from a vulnerability that allows a remote attacker to perform an unlocking operati...

6.4CVSS5.7AI score0.00895EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2022/08/24 12:0 a.m.3 views

PT-2022-23693 · Mazda · Mazda Vehicles

Name of the Vulnerable Software and Affected Versions: Mazda vehicles affected versions not specified Description: The issue concerns the Remote Keyless Entry RKE receiving unit, which allows remote attackers to perform unlock operations and force a resynchronization after capturing three...

6.4CVSS6.4AI score0.00895EPSS
Exploits1References7
CNNVD
CNNVD
added 2022/08/24 12:0 a.m.4 views

Remote Keyless Entry 安全漏洞

Remote Keyless Entry RKE is a system used to remotely lock and unlock a vehicle. A security vulnerability exists in Nissan, Kia, and Hyundai vehicles Remote Keyless Entry RKE, which stems from a vulnerability that allows a remote attacker to perform an unlock operation and force a resynchronizati...

6.4CVSS5.7AI score0.00902EPSS
Exploits1References6
CNNVD
CNNVD
added 2022/08/24 12:0 a.m.8 views

Remote Keyless Entry 安全漏洞

Remote Keyless Entry RKE is a system used to remotely lock and unlock a vehicle. A security vulnerability exists in Honda Remote Keyless Entry RKE that stems from allowing a remote attacker to perform an unlock operation and force a resynchronization, known as a rollback attack, after capturing...

6.4CVSS5.7AI score0.00895EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2022/08/08 5:31 a.m.26 views

CVE-2022-35929

A flaw was found in the cosign package. The cosign verify-attestation used with the --type flag will report a false positive verification when there is at least one attestation with a valid signature and when there are no attestations of the type being verified for example, —type defaults to...

9.8CVSS1.6AI score0.00551EPSS
Exploits1References4
OSV
OSV
added 2022/08/04 6:45 p.m.23 views

CVE-2022-35929 False positive signature verification in cosign

cosign is a container signing and verification utility. In versions prior to 1.10.1 cosign can report a false positive if any attestation exists. cosign verify-attestation used with the --type flag will report a false positive verification when there is at least one attestation with a valid...

7.1CVSS9.1AI score0.00551EPSS
Exploits1References4
Schneier on Security
Schneier on Security
added 2022/07/12 12:23 p.m.23 views

Security Vulnerabilities in Honda’s Keyless Entry System

Honda vehicles from 2021 to 2022 are vulnerable to this attack: On Thursday, a security researcher who goes by Kevin2600 published a technical report and videos on a vulnerability that he claims allows anyone armed with a simple hardware device to steal the code to unlock Honda vehicles. Kevin260...

2.1AI score
Exploits0
ThreatPost
ThreatPost
added 2022/03/31 2:49 p.m.44 views

Automaker Cybersecurity Lagging Behind Tech Adoption, Experts Warn

A pair of recent vulnerabilities found in the automaker ecosystem might not seem like a real danger taken separately. But experts warn a lack of attention on cybersecurity could plague “smart” car and electric vehicle systems — and users — in years to come, as the use of automotive technology...

6.5CVSS8.7AI score0.01083EPSS
Exploits3References5
Kitploit
Kitploit
added 2022/03/30 8:30 p.m.149 views

CVE-2022-27254 - PoC For Vulnerability In Honda's Remote Keyless System

PoC for vulnerability in Honda's Remote Keyless SystemCVE-2022-27254 Disclaimer: For educational purposes only. Kindly note that the discoverers for this vulnerability are Ayyappan Rajesh, a student at UMass Dartmouth and HackingIntoYourHeart. Others mentioned in this repository are credited for...

5.3CVSS6.2AI score0.01083EPSS
Exploits2References3
The Hacker News
The Hacker News
added 2022/03/30 11:45 a.m.58 views

Honda's Keyless Access Bug Could Let Thieves Remotely Unlock and Start Vehicles

A duo of researchers has released a proof-of-concept PoC demonstrating the ability for a malicious actor to remote lock, unlock, and even start Honda and Acura vehicles by means of what's called a replay attack. The attack is made possible, thanks to a vulnerability in its remote keyless system...

6.5CVSS0.7AI score0.01083EPSS
Exploits3
NVD
NVD
added 2022/03/23 10:15 p.m.27 views

CVE-2022-27254

The remote keyless system on Honda Civic 2018 vehicles sends the same RF signal for each door-open request, which allows for a replay attack, a related issue to CVE-2019-20626...

5.3CVSS0.01083EPSS
Exploits2References6
ATTACKERKB
ATTACKERKB
added 2022/03/23 10:15 p.m.5 views

CVE-2022-27254

The remote keyless system on Honda Civic 2018 vehicles sends the same RF signal for each door-open request, which allows for a replay attack, a related issue to CVE-2019-20626...

6.5CVSS5.9AI score0.01083EPSS
Exploits3References7
Prion
Prion
added 2022/03/23 10:15 p.m.23 views

Design/Logic Flaw

The remote keyless system on Honda Civic 2018 vehicles sends the same RF signal for each door-open request, which allows for a replay attack, a related issue to CVE-2019-20626...

2.9CVSS5.6AI score0.01083EPSS
Exploits3References6
CVE
CVE
added 2022/03/23 9:9 p.m.227 views

CVE-2022-27254

The CVE-2022-27254 issue concerns Honda Civic family models (notably 2016–2020 per PT-2022-18332; 2018 Civic noted in the CVE) where the remote keyless system transmits the same RF signal for door open (and related actions), enabling a replay attack. Red Hat RH entries link this to CVE-2019-20626...

5.3CVSS6AI score0.01083EPSS
Exploits2References6Affected Software1
Cvelist
Cvelist
added 2022/03/23 9:9 p.m.30 views

CVE-2022-27254

The remote keyless system on Honda Civic 2018 vehicles sends the same RF signal for each door-open request, which allows for a replay attack, a related issue to CVE-2019-20626...

5.8AI score0.01083EPSS
Exploits2References6
GithubExploit
GithubExploit
added 2022/03/23 3:3 p.m.694 views

Exploit for Authentication Bypass by Capture-replay in Honda Civic_2018_Firmware

CVE-2022-27254 PoC for vulnerability in Honda's Remote Keyless...

5.3CVSS7.8AI score0.01083EPSS
Exploits2
Positive Technologies
Positive Technologies
added 2022/03/23 12:0 a.m.9 views

PT-2022-18332 · Honda · Honda Civic

Name of the Vulnerable Software and Affected Versions: Honda Civic versions 2016 through 2020 Description: The issue concerns a replay attack vulnerability in the remote keyless system of certain Honda vehicles, allowing unauthorized individuals to unlock doors and start the engine by interceptin...

5.3CVSS5.5AI score0.01083EPSS
Exploits2References15
Rows per page
Query Builder