41 matches found
CVE-2026-49319
Remote Keyless Entry System RKES, using the 433 MHz key fob bearing FCC ID CWTR53R0 manufactured by ALPS ALPINE CO., LTD., is vulnerable to a roll-back attack against its rolling-code authentication. An attacker within RF range who records two consecutive lock or unlock transmissions from a...
CVE-2026-49319 Alps Electric Co., Ltd. R53R0 Remote Keyless Entry System (RKES) Replay Attack
Remote Keyless Entry System RKES, using the 433 MHz key fob bearing FCC ID CWTR53R0 manufactured by ALPS ALPINE CO., LTD., is vulnerable to a roll-back attack against its rolling-code authentication. An attacker within RF range who records two consecutive lock or unlock transmissions from a...
CVE-2026-49319 Alps Electric Co., Ltd. R53R0 Remote Keyless Entry System (RKES) Replay Attack
Remote Keyless Entry System RKES, using the 433 MHz key fob bearing FCC ID CWTR53R0 manufactured by ALPS ALPINE CO., LTD., is vulnerable to a roll-back attack against its rolling-code authentication. An attacker within RF range who records two consecutive lock or unlock transmissions from a...
EUVD-2026-39417
Remote Keyless Entry System RKES, using the 433 MHz key fob bearing FCC ID CWTR53R0 manufactured by ALPS ALPINE CO., LTD., is vulnerable to a roll-back attack against its rolling-code authentication. An attacker within RF range who records two consecutive lock or unlock transmissions from a...
PT-2026-52445
Name of the Vulnerable Software and Affected Versions Remote Keyless Entry System RKES using 433 MHz key fob FCC ID CWTR53R0 affected versions not specified Description The system is susceptible to a roll-back attack targeting its rolling-code authentication. An attacker within radio frequency...
CVE-2026-2541 Micca KE700 Brute-force vulnerability due to low entropy
The Micca KE700 system relies on a 6-bit portion of an identifier for authentication within rolling codes, providing only 64 possible combinations. This low entropy allows an attacker to perform a brute-force attack against one component of the rolling code. Successful exploitation simplify an...
CVE-2026-2541 Micca KE700 Brute-force vulnerability due to low entropy
The Micca KE700 system relies on a 6-bit portion of an identifier for authentication within rolling codes, providing only 64 possible combinations. This low entropy allows an attacker to perform a brute-force attack against one component of the rolling code. Successful exploitation simplify an...
CVE-2026-2541
CVE-2026-2541 affects the Micca KE700 system. The vulnerability arises from using a 6-bit portion of an identifier for authentication within rolling codes, yielding only 64 possible combinations. This low entropy enables brute-force attempts against one component of the rolling code, allowing an ...
Micca KE700 安全漏洞
The Micca KE700 is a source bookshelf speaker produced by the Micca company. The Micca KE700 has a security vulnerability. This vulnerability arises from the fact that authentication is performed using only 6-bit identifiers in the rolling code. The low entropy value in this code can lead to...
D3D ZX-G12 安全漏洞
D3D ZX-G12 is a multi-functional smart home security alarm system from D3D India. A security vulnerability exists in D3D ZX-G12 v2.1.1, which stems from the lack of rolling code and anti-replay protection in the 433 MHz sensor communication channel, which could lead to a replay attack triggering ...
EUVD-2021-32845
Malicious code in bioql PyPI...
EUVD-2025-29238
Malicious code in bioql PyPI...
CVE-2025-56448
The Positron PX360BT SW REV 8 car alarm system is vulnerable to a replay attack due to a failure in implementing rolling code security. The alarm system does not properly rotate or invalidate used codes, allowing repeated reuse of captured transmissions. This exposes users to significant security...
CVE-2025-56448
The Positron PX360BT SW REV 8 car alarm system is vulnerable to a replay attack due to a failure in implementing rolling code security. The alarm system does not properly rotate or invalidate used codes, allowing repeated reuse of captured transmissions. This exposes users to significant security...
CVE-2025-56448
The Positron PX360BT SW REV 8 car alarm system is vulnerable to a replay attack due to a failure in implementing rolling code security. The alarm system does not properly rotate or invalidate used codes, allowing repeated reuse of captured transmissions. This exposes users to significant security...
CVE-2025-56448
The Positron PX360BT SW REV 8 car alarm system is vulnerable to a replay attack due to a failure in implementing rolling code security. The alarm system does not properly rotate or invalidate used codes, allowing repeated reuse of captured transmissions. This exposes users to significant security...
Positron PX360BT 安全漏洞
Positron PX360BT is an in-vehicle multimedia device from the Brazilian company Positron. A security vulnerability exists in the Positron PX360BT that stems from a failure to properly implement a rolling code security mechanism, which could lead to a replay attack...
PT-2025-37755
Name of the Vulnerable Software and Affected Versions Positron PX360BT SW REV 8 Description The Positron PX360BT SW REV 8 car alarm system is vulnerable to a replay attack due to a failure in implementing rolling code security. The alarm system does not properly rotate or invalidate used codes,...
CVE-2025-56448
The CVE-2025-56448 entry concerns the Positron PX360BT SW REV 8 car alarm system. The provided documents state that the vulnerability arises from a failure to properly implement rolling-code security, allowing repeated use of captured transmissions and enabling a replay attack. Affected component...
CVE-2025-56448
The Positron PX360BT SW REV 8 car alarm system is vulnerable to a replay attack due to a failure in implementing rolling code security. The alarm system does not properly rotate or invalidate used codes, allowing repeated reuse of captured transmissions. This exposes users to significant security...