CVE-2020-15912

Опубликовано: 23 июл. 2020

Источник: nvd

CVSS3: 6.5

CVSS2: 3.3

EPSS Низкий

Описание

Tesla Model 3 vehicles allow attackers to open a door by leveraging access to a legitimate key card, and then using NFC Relay. NOTE: the vendor has developed Pin2Drive to mitigate this issue

Ссылки

https://cansecwest.com/post/2020-03-09-22:00:00_2020_Speakers
Third Party Advisory
https://twitter.com/Kevin2600/status/1218892338182836224
Third Party Advisory
https://www.carhackingvillage.com/speaker-bios#htm3nrr
Broken Link
https://www.youtube.com/watch?v=VYKsfgox-bs
Third Party Advisory
https://www.youtube.com/watch?v=kQWg-Ywv3S4
Third Party Advisory
https://www.youtube.com/watch?v=nn-_3AbtEkI
Exploit
Third Party Advisory
https://cansecwest.com/post/2020-03-09-22:00:00_2020_Speakers
Third Party Advisory
https://twitter.com/Kevin2600/status/1218892338182836224
Third Party Advisory
https://www.carhackingvillage.com/speaker-bios#htm3nrr
Broken Link
https://www.youtube.com/watch?v=VYKsfgox-bs
Third Party Advisory
https://www.youtube.com/watch?v=kQWg-Ywv3S4
Third Party Advisory
https://www.youtube.com/watch?v=nn-_3AbtEkI
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:tesla:model_3_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tesla:model_3:-:*:*:*:*:*:*:*

EPSS

Процентиль: 44%

0.00213

Низкий

6.5 Medium

CVSS3

3.3 Low

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-27c3-9rq9-x65x