{"api_version":"1","generated_at":"2026-06-10T15:07:21+00:00","cve":"CVE-2020-15912","urls":{"html":"https://cve.report/CVE-2020-15912","api":"https://cve.report/api/cve/CVE-2020-15912.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2020-15912","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2020-15912"},"summary":{"title":"CVE-2020-15912","description":"** DISPUTED ** Tesla Model 3 vehicles allow attackers to open a door by leveraging access to a legitimate key card, and then using NFC Relay. NOTE: the vendor has developed Pin2Drive to mitigate this issue.","state":"PUBLIC","assigner":"cve@mitre.org","published_at":"2020-07-23 15:15:00","updated_at":"2023-11-07 03:17:00"},"problem_types":["NVD-CWE-noinfo"],"metrics":[],"references":[{"url":"https://www.youtube.com/watch?v=VYKsfgox-bs","name":"https://www.youtube.com/watch?v=VYKsfgox-bs","refsource":"MISC","tags":["Third Party Advisory"],"title":"NFC Relay Attack for TESLA Model 3 (Long -Range) - YouTube","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://cansecwest.com/post/2020-03-09-22:00:00_2020_Speakers","name":"https://cansecwest.com/post/2020-03-09-22:00:00_2020_Speakers","refsource":"MISC","tags":["Third Party Advisory"],"title":"CanSecWest Applied Security Conference: Vancouver, British Columbia, Canada","mime":"text/html","httpstatus":"200","archivestatus":"0"},{"url":"https://www.youtube.com/watch?v=nn-_3AbtEkI","name":"https://www.youtube.com/watch?v=nn-_3AbtEkI","refsource":"MISC","tags":[],"title":"Hacking TESLA Model 3 - NFC Relay Revisited - YouTube","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.carhackingvillage.com/speaker-bios#htm3nrr","name":"https://www.carhackingvillage.com/speaker-bios#htm3nrr","refsource":"MISC","tags":[],"title":"Speaker Bios — Car Hacking Village","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.youtube.com/watch?v=kQWg-Ywv3S4","name":"https://www.youtube.com/watch?v=kQWg-Ywv3S4","refsource":"MISC","tags":["Third Party Advisory"],"title":"NFC Relay Attack for TESLA Model 3 (WIFI) - YouTube","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://twitter.com/Kevin2600/status/1218892338182836224","name":"https://twitter.com/Kevin2600/status/1218892338182836224","refsource":"MISC","tags":["Third Party Advisory"],"title":"Kevin2600 on Twitter: \"Although Tesla thinks they are protected from the Relay attack with PIN2Drive. But we are still able to open the door. So risk still there. Anyway, we just purely enjoy the research. I hope you guys like this one :p… https://t.co/SkWN9i0uLe\"","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2020-15912","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2020-15912","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2020","cve_id":"15912","vulnerable":"-1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"tesla","cpe5":"model_3","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2020","cve_id":"15912","vulnerable":"0","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"tesla","cpe5":"model_3","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2020","cve_id":"15912","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"tesla","cpe5":"model_3_firmware","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2020","cve_id":"15912","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"tesla","cpe5":"model_3_firmware","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","ID":"CVE-2020-15912","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"** DISPUTED ** Tesla Model 3 vehicles allow attackers to open a door by leveraging access to a legitimate key card, and then using NFC Relay. NOTE: the vendor has developed Pin2Drive to mitigate this issue."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"url":"https://cansecwest.com/post/2020-03-09-22:00:00_2020_Speakers","refsource":"MISC","name":"https://cansecwest.com/post/2020-03-09-22:00:00_2020_Speakers"},{"url":"https://www.youtube.com/watch?v=kQWg-Ywv3S4","refsource":"MISC","name":"https://www.youtube.com/watch?v=kQWg-Ywv3S4"},{"url":"https://www.youtube.com/watch?v=VYKsfgox-bs","refsource":"MISC","name":"https://www.youtube.com/watch?v=VYKsfgox-bs"},{"url":"https://twitter.com/Kevin2600/status/1218892338182836224","refsource":"MISC","name":"https://twitter.com/Kevin2600/status/1218892338182836224"},{"refsource":"MISC","name":"https://www.youtube.com/watch?v=nn-_3AbtEkI","url":"https://www.youtube.com/watch?v=nn-_3AbtEkI"},{"refsource":"MISC","name":"https://www.carhackingvillage.com/speaker-bios#htm3nrr","url":"https://www.carhackingvillage.com/speaker-bios#htm3nrr"}]}},"nvd":{"publishedDate":"2020-07-23 15:15:00","lastModifiedDate":"2023-11-07 03:17:00","problem_types":["NVD-CWE-noinfo"],"metrics":{"baseMetricV3":{"cvssV3":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE","baseScore":6.5,"baseSeverity":"MEDIUM"},"exploitabilityScore":2.8,"impactScore":3.6},"baseMetricV2":{"cvssV2":{"version":"2.0","vectorString":"AV:A/AC:L/Au:N/C:N/I:P/A:N","accessVector":"ADJACENT_NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE","baseScore":3.3},"severity":"LOW","exploitabilityScore":6.5,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}},"configurations":{"CVE_data_version":"4.0","nodes":[{"operator":"AND","children":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:tesla:model_3_firmware:-:*:*:*:*:*:*:*","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":false,"cpe23Uri":"cpe:2.3:h:tesla:model_3:-:*:*:*:*:*:*:*","cpe_name":[]}]}],"cpe_match":[]}]}},"legacy_mitre":{"record":{"CveYear":"2020","CveId":"15912","Ordinal":"177319","Title":"CVE-2020-15912","CVE":"CVE-2020-15912","Year":"2020"},"notes":[{"CveYear":"2020","CveId":"15912","Ordinal":"1","NoteData":"** DISPUTED ** Tesla Model 3 vehicles allow attackers to open a door by leveraging access to a legitimate key card, and then using NFC Relay. NOTE: the vendor has developed Pin2Drive to mitigate this issue.","Type":"Description","Title":null},{"CveYear":"2020","CveId":"15912","Ordinal":"2","NoteData":"2020-07-23","Type":"Other","Title":"Published"},{"CveYear":"2020","CveId":"15912","Ordinal":"3","NoteData":"2020-08-10","Type":"Other","Title":"Modified"}]}}}