Model S Firmware@* Security Vulnerabilities and Issues — Model S Firmware@* CVE List

Lucene search

TeslaModel S Firmware*

7 matches found

CVE•added 2022/03/27 1:15 p.m.•70 views

CVE-2022-27948

Certain Tesla vehicles through 2022-03-26 allow attackers to open the charging port via a 315 MHz RF signal containing a fixed sequence of approximately one hundred symbols. NOTE: the vendor's perspective is that the behavior is as intended

7.2CVSS4.6AI score0.00214EPSS

CVE•added 2025/04/30 8:15 p.m.•52 views

CVE-2024-6032

Tesla Model S Iris Modem ql_atfwd Command Injection Code Execution Vulnerability. This vulnerability allows local attackers to execute arbitrary code on affected Tesla Model S vehicles. An attacker must first obtain the ability to execute code on the target system in order to exploit this vulnerabi...

7.8CVSS8AI score0.00076EPSS

CVE•added 2025/04/30 8:15 p.m.•44 views

CVE-2024-6029

Tesla Model S Iris Modem Race Condition Firewall Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass the firewall on the Iris modem in affected Tesla Model S vehicles. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ...

5CVSS5AI score0.00035EPSS

CVE•added 2025/04/30 8:15 p.m.•44 views

CVE-2024-6031

Tesla Model S oFono AT Command Heap-based Buffer Overflow Code Execution Vulnerability. This vulnerability allows local attackers to execute arbitrary code on affected Tesla Model S vehicles. An attacker must first obtain the ability to execute code on the target modem in order to exploit this vuln...

7.8CVSS7.7AI score0.00022EPSS

CVE•added 2025/04/30 8:15 p.m.•42 views

CVE-2024-6030

Tesla Model S oFono Unnecessary Privileges Sandbox Escape Vulnerability. This vulnerability allows local attackers to escape the sandbox on affected Tesla Model S vehicles. An attacker must first obtain the ability to execute code within the sandbox on the target system in order to exploit this vul...

7CVSS6.9AI score0.00022EPSS

CVE•added 2025/04/30 8:15 p.m.•40 views

CVE-2024-13943

Tesla Model S Iris Modem QCMAP_ConnectionManager Improper Input Validation Sandbox Escape Vulnerability. This vulnerability allows local attackers to escape the sandbox on affected affected Tesla Model S vehicles. An attacker must first obtain the ability to execute low-privileged code on the targe...

7.8CVSS7.1AI score0.00042EPSS

CVE•added 2023/03/29 7:15 p.m.•30 views

CVE-2022-3093

This vulnerability allows physical attackers to execute arbitrary code on affected Tesla vehicles. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ice_updater update mechanism. The issue results from the lack of proper validation of user-supplied fi...

7.6CVSS6.8AI score0.00084EPSS