Vulnerability Details CVE-2020-15912
Tesla Model 3 vehicles allow attackers to open a door by leveraging access to a legitimate key card, and then using NFC Relay. NOTE: the vendor has developed Pin2Drive to mitigate this issue
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 44.0%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 3.3
References
- https://cansecwest.com/post/2020-03-09-22:00:00_2020_Speakers
- https://twitter.com/Kevin2600/status/1218892338182836224
- https://www.carhackingvillage.com/speaker-bios#htm3nrr
- https://www.youtube.com/watch?v=VYKsfgox-bs
- https://www.youtube.com/watch?v=kQWg-Ywv3S4
- https://www.youtube.com/watch?v=nn-_3AbtEkI
- https://cansecwest.com/post/2020-03-09-22:00:00_2020_Speakers
- https://twitter.com/Kevin2600/status/1218892338182836224
- https://www.carhackingvillage.com/speaker-bios#htm3nrr
- https://www.youtube.com/watch?v=VYKsfgox-bs
- https://www.youtube.com/watch?v=kQWg-Ywv3S4
- https://www.youtube.com/watch?v=nn-_3AbtEkI
Products affected by CVE-2020-15912
-
cpe:2.3:h:tesla:model_3:-
-
cpe:2.3:o:tesla:model_3_firmware:-