CVE-2022-27948
Published Mar 27, 2022
Last updated 3 months ago
Overview
- Description
- Certain Tesla vehicles through 2022-03-26 allow attackers to open the charging port via a 315 MHz RF signal containing a fixed sequence of approximately one hundred symbols. NOTE: the vendor's perspective is that the behavior is as intended
- Source
- cve@mitre.org
- NVD status
- Modified
- CNA Tags
- disputed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 4.3
- Impact score
- 1.4
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
- Severity
- MEDIUM
CVSS 2.0
- Type
- Primary
- Base score
- 3.3
- Impact score
- 2.9
- Exploitability score
- 6.5
- Vector string
- AV:A/AC:L/Au:N/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- NVD-CWE-noinfo
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-862
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:tesla:model_3_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "86619D7A-ACB6-489C-9C29-37C6018E5B4B",
"versionEndIncluding": "2022-03-26"
},
{
"criteria": "cpe:2.3:o:tesla:model_s_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FD68704D-C711-491F-B278-B02C6866738C",
"versionEndIncluding": "2022-03-26"
},
{
"criteria": "cpe:2.3:o:tesla:model_x_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C3517683-8493-4D0D-9792-5C9034B1F0B3",
"versionEndIncluding": "2022-03-26"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:tesla:model_3:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "825A79FD-C872-4564-9782-83BEEADDF5D9"
},
{
"criteria": "cpe:2.3:h:tesla:model_s:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "8D28E699-B843-4641-9BA6-406D88231E7C"
},
{
"criteria": "cpe:2.3:h:tesla:model_x:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "C550FF8A-58ED-4265-B33F-10AFDEA95519"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]