Known Vulnerabilities for products from Tesla
Listed below are 13 of the newest known vulnerabilities associated with the vendor "Tesla".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Tesla can be found at device.report : Tesla
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-42431 | This vulnerability allows local attackers to escalate privileges on affected Tesla vehicles. An attacker must first obtain th... | 7.8 - HIGH | 2023-03-29 | 2023-04-08 |
| CVE-2022-42430 | This vulnerability allows local attackers to escalate privileges on affected Tesla vehicles. An attacker must first obtain th... | 7.8 - HIGH | 2023-03-29 | 2023-04-08 |
| CVE-2022-37709 | Tesla Model 3 V11.0(2022.4.5.1 6b701552d7a6) Tesla mobile app v4.23 is vulnerable to Authentication Bypass by spoofing. Tesla... | 5.3 - MEDIUM | 2022-09-16 | 2022-09-23 |
| CVE-2022-27948 | ** DISPUTED ** Certain Tesla vehicles through 2022-03-26 allow attackers to open the charging port via a 315 MHz RF signal co... | 4.3 - MEDIUM | 2022-03-27 | 2023-11-07 |
| CVE-2022-3093 | This vulnerability allows physical attackers to execute arbitrary code on affected Tesla vehicles. Authentication is not requ... | 6.4 - MEDIUM | 2023-03-29 | 2023-04-06 |
| CVE-2020-29440 | Tesla Model X vehicles before 2020-11-23 do not perform certificate validation during an attempt to pair a new key fob with t... | 4.6 - MEDIUM | 2020-11-30 | 2020-12-04 |
| CVE-2020-29439 | Tesla Model X vehicles before 2020-11-23 have key fobs that rely on five VIN digits for the authentication needed for a body ... | 4.6 - MEDIUM | 2020-11-30 | 2020-12-04 |
| CVE-2020-29438 | Tesla Model X vehicles before 2020-11-23 have key fobs that accept firmware updates without signature verification. This allo... | 6.5 - MEDIUM | 2020-11-30 | 2020-12-04 |
| CVE-2020-15912 | ** DISPUTED ** Tesla Model 3 vehicles allow attackers to open a door by leveraging access to a legitimate key card, and then ... | 6.5 - MEDIUM | 2020-07-23 | 2023-11-07 |
| CVE-2020-10558 | The driving interface of Tesla Model 3 vehicles in any release before 2020.4.10 allows Denial of Service to occur due to impr... | 6.5 - MEDIUM | 2020-03-20 | 2022-09-23 |
| CVE-2020-9306 | Tesla SolarCity Solar Monitoring Gateway through 5.46.43 has a "Use of Hard-coded Credentials" issue because Digi ConnectPort... | 8.8 - HIGH | 2021-02-18 | 2021-07-21 |
| CVE-2019-9977 | The renderer process in the entertainment system on Tesla Model 3 vehicles mishandles JIT compilation, which allows attackers... | 8.8 - HIGH | 2019-03-24 | 2021-07-21 |
| CVE-2016-9337 | An issue was discovered in Tesla Motors Model S automobile, all firmware versions before version 7.1 (2.36.31) with web brows... | 6.8 - MEDIUM | 2017-02-13 | 2017-03-14 |
Known software with vulnerabilities from Tesla
| Type | Vendor | Product | Version |
|---|---|---|---|
| Operating System | Tesla | Gateway Ecu | - |
| Hardware | Tesla | Model 3 | - |
| Operating System | Tesla | Model 3 Firmware | - |
| Application | Tesla | Model 3 Web Interface | 2020.4.10 |