Описание
The Remote Keyless Entry (RKE) receiving unit on certain Nissan, Kia, and Hyundai vehicles through 2017 allows remote attackers to perform unlock operations and force a resynchronization after capturing two consecutive valid key fob signals over the radio, aka a RollBack attack. The attacker retains the ability to unlock indefinitely.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
- ExploitThird Party Advisory
- Press/Media CoverageThird Party Advisory
- ExploitThird Party Advisory
- ExploitThird Party Advisory
- ExploitThird Party Advisory
- ExploitThird Party Advisory
- Press/Media CoverageThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2017 (включая)
Одновременно
cpe:2.3:o:nissan:nissan_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:nissan:nissan:-:*:*:*:*:*:*:*
Конфигурация 2Версия до 2017 (включая)
Одновременно
cpe:2.3:o:kia:kia_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:kia:kia:-:*:*:*:*:*:*:*
Конфигурация 3Версия до 2017 (включая)
Одновременно
cpe:2.3:o:hyundai:hyundai_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hyundai:hyundai:-:*:*:*:*:*:*:*
EPSS
Процентиль: 81%
0.01502
Низкий
6.4 Medium
CVSS3
Дефекты
CWE-294
Связанные уязвимости
CVSS3: 6.4
github
больше 3 лет назад
The Remote Keyless Entry (RKE) receiving unit on certain Nissan, Kia, and Hyundai vehicles through 2017 allows remote attackers to perform unlock operations and force a resynchronization after capturing two consecutive valid key fob signals over the radio, aka a RollBack attack. The attacker retains the ability to unlock indefinitely.
EPSS
Процентиль: 81%
0.01502
Низкий
6.4 Medium
CVSS3
Дефекты
CWE-294