Known Vulnerabilities for products from Tesla
Listed below are 13 of the newest known vulnerabilities associated with the vendor "Tesla".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Tesla can be found at device.report : Tesla
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-48598 json | Not Provided | 2026-06-02 | 2026-06-04 | |
| CVE-2026-48597 json | Not Provided | 2026-06-02 | 2026-06-04 | |
| CVE-2026-48596 json | Not Provided | 2026-06-02 | 2026-06-04 | |
| CVE-2026-48595 json | Not Provided | 2026-06-02 | 2026-06-04 | |
| CVE-2026-48594 json | Not Provided | 2026-06-02 | 2026-06-04 | |
| CVE-2022-42431 json | This vulnerability allows local attackers to escalate privileges on affected Tesla vehicles. An attacker must first obtain th... | 7.8 - HIGH | 2023-03-29 | 2023-04-08 |
| CVE-2022-42430 json | This vulnerability allows local attackers to escalate privileges on affected Tesla vehicles. An attacker must first obtain th... | 7.8 - HIGH | 2023-03-29 | 2023-04-08 |
| CVE-2022-37709 json | Tesla Model 3 V11.0(2022.4.5.1 6b701552d7a6) Tesla mobile app v4.23 is vulnerable to Authentication Bypass by spoofing. Tesla... | 5.3 - MEDIUM | 2022-09-16 | 2022-09-23 |
| CVE-2022-27948 json | ** DISPUTED ** Certain Tesla vehicles through 2022-03-26 allow attackers to open the charging port via a 315 MHz RF signal co... | 4.3 - MEDIUM | 2022-03-27 | 2023-11-07 |
| CVE-2022-3093 json | This vulnerability allows physical attackers to execute arbitrary code on affected Tesla vehicles. Authentication is not requ... | 6.4 - MEDIUM | 2023-03-29 | 2023-04-06 |
| CVE-2020-29440 json | Tesla Model X vehicles before 2020-11-23 do not perform certificate validation during an attempt to pair a new key fob with t... | 4.6 - MEDIUM | 2020-11-30 | 2020-12-04 |
| CVE-2020-29439 json | Tesla Model X vehicles before 2020-11-23 have key fobs that rely on five VIN digits for the authentication needed for a body ... | 4.6 - MEDIUM | 2020-11-30 | 2020-12-04 |
| CVE-2020-29438 json | Tesla Model X vehicles before 2020-11-23 have key fobs that accept firmware updates without signature verification. This allo... | 6.5 - MEDIUM | 2020-11-30 | 2020-12-04 |
| CVE-2020-15912 json | ** DISPUTED ** Tesla Model 3 vehicles allow attackers to open a door by leveraging access to a legitimate key card, and then ... | 6.5 - MEDIUM | 2020-07-23 | 2023-11-07 |
| CVE-2020-10558 json | The driving interface of Tesla Model 3 vehicles in any release before 2020.4.10 allows Denial of Service to occur due to impr... | 6.5 - MEDIUM | 2020-03-20 | 2022-09-23 |
| CVE-2020-9306 json | Tesla SolarCity Solar Monitoring Gateway through 5.46.43 has a "Use of Hard-coded Credentials" issue because Digi ConnectPort... | 8.8 - HIGH | 2021-02-18 | 2021-07-21 |
| CVE-2019-9977 json | The renderer process in the entertainment system on Tesla Model 3 vehicles mishandles JIT compilation, which allows attackers... | 8.8 - HIGH | 2019-03-24 | 2021-07-21 |
| CVE-2016-9337 json | An issue was discovered in Tesla Motors Model S automobile, all firmware versions before version 7.1 (2.36.31) with web brows... | Not Provided | 2017-02-13 | 2025-04-20 |
Known software with vulnerabilities from Tesla
| Type | Vendor | Product | Version |
|---|---|---|---|
| Operating System | Tesla | Gateway Ecu | - |
| Hardware | Tesla | Model 3 | - |
| Operating System | Tesla | Model 3 Firmware | - |
| Application | Tesla | Model 3 Web Interface | 2020.4.10 |