CVE-2022-27948 - OpenCVE

Certain Tesla vehicles through 2022-03-26 allow attackers to open the charging port via a 315 MHz RF signal containing a fixed sequence of approximately one hundred symbols. NOTE: the vendor's perspective is that the behavior is as intended

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact Low

Availability Impact None

User Interaction None

No CVSS v3.0

Access Vector Adjacent Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:A/AC:L/Au:N/C:N/I:P/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Tesla	Model X Model S Firmware Model 3 Firmware Model 3 Model S Model X Firmware

Configuration 1 [-]

AND

OR	cpe:2.3:o:tesla:model_3_firmware::::::::
	cpe:2.3:o:tesla:model_s_firmware::::::::
	cpe:2.3:o:tesla:model_x_firmware::::::::

OR	cpe:2.3:h:tesla:model_3:-:::::::*
	cpe:2.3:h:tesla:model_s:-:::::::*
	cpe:2.3:h:tesla:model_x:-:::::::*

References

Link	Resource
https://github.com/pompel123/Tesla-Charging-Port-Opener	Third Party Advisory
https://twitter.com/IfNotPike/status/1507818836568858631	Third Party Advisory
https://twitter.com/IfNotPike/status/1507852693699661827	Exploit Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2022-03-27T12:07:15

Updated: 2024-06-04T17:16:11.690Z

Reserved: 2022-03-27T00:00:00

Link: CVE-2022-27948

JSON object: View

NVD Information

Status : Modified

Published: 2022-03-27T13:15:13.573

Modified: 2024-06-04T19:17:15.463

Link: CVE-2022-27948

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-noinfo

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "Certain Tesla vehicles through 2022-03-26 allow attackers to open the charging port via a 315 MHz RF signal containing a fixed sequence of approximately one hundred symbols. NOTE: the vendor's perspective is that the behavior is as intended"}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 7.2, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AC:L/AV:N/A:L/C:N/I:L/PR:N/S:C/UI:N", "version": "3.1"}}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2022-03-29T01:16:57", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://twitter.com/IfNotPike/status/1507818836568858631"}, {"tags": ["x_refsource_MISC"], "url": "https://twitter.com/IfNotPike/status/1507852693699661827"}, {"tags": ["x_refsource_MISC"], "url": "https://github.com/pompel123/Tesla-Charging-Port-Opener"}], "tags": ["disputed"], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2022-27948", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "** DISPUTED ** Certain Tesla vehicles through 2022-03-26 allow attackers to open the charging port via a 315 MHz RF signal containing a fixed sequence of approximately one hundred symbols. NOTE: the vendor's perspective is that the behavior is as intended."}]}, "impact": {"cvss": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AC:L/AV:N/A:L/C:N/I:L/PR:N/S:C/UI:N", "version": "3.1"}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://twitter.com/IfNotPike/status/1507818836568858631", "refsource": "MISC", "url": "https://twitter.com/IfNotPike/status/1507818836568858631"}, {"name": "https://twitter.com/IfNotPike/status/1507852693699661827", "refsource": "MISC", "url": "https://twitter.com/IfNotPike/status/1507852693699661827"}, {"name": "https://github.com/pompel123/Tesla-Charging-Port-Opener", "refsource": "MISC", "url": "https://github.com/pompel123/Tesla-Charging-Port-Opener"}]}}}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2022-27948", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-04-19T14:04:23.082156Z"}}}], "affected": [{"cpes": ["cpe:2.3:o:tesla:model_3_firmware:2022-03-26:*:*:*:*:*:*:*"], "vendor": "tesla", "product": "model_3_firmware", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "2022-03-26"}], "defaultStatus": "unknown"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-862", "description": "CWE-862 Missing Authorization"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-04T17:16:11.690Z"}}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2022-27948", "datePublished": "2022-03-27T12:07:15", "dateReserved": "2022-03-27T00:00:00", "dateUpdated": "2024-06-04T17:16:11.690Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:tesla:model_3_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "86619D7A-ACB6-489C-9C29-37C6018E5B4B", "versionEndIncluding": "2022-03-26", "vulnerable": true}, {"criteria": "cpe:2.3:o:tesla:model_s_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "FD68704D-C711-491F-B278-B02C6866738C", "versionEndIncluding": "2022-03-26", "vulnerable": true}, {"criteria": "cpe:2.3:o:tesla:model_x_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "C3517683-8493-4D0D-9792-5C9034B1F0B3", "versionEndIncluding": "2022-03-26", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:tesla:model_3:-:*:*:*:*:*:*:*", "matchCriteriaId": "825A79FD-C872-4564-9782-83BEEADDF5D9", "vulnerable": false}, {"criteria": "cpe:2.3:h:tesla:model_s:-:*:*:*:*:*:*:*", "matchCriteriaId": "8D28E699-B843-4641-9BA6-406D88231E7C", "vulnerable": false}, {"criteria": "cpe:2.3:h:tesla:model_x:-:*:*:*:*:*:*:*", "matchCriteriaId": "C550FF8A-58ED-4265-B33F-10AFDEA95519", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "Certain Tesla vehicles through 2022-03-26 allow attackers to open the charging port via a 315 MHz RF signal containing a fixed sequence of approximately one hundred symbols. NOTE: the vendor's perspective is that the behavior is as intended"}, {"lang": "es", "value": "Determinados veh\u00edculos Tesla versiones hasta 26-03-2022, permiten a atacantes abrir el puerto de carga por medio de una se\u00f1al de RF de 315 MHz que contiene una secuencia fija de aproximadamente cien s\u00edmbolos"}], "id": "CVE-2022-27948", "lastModified": "2024-06-04T19:17:15.463", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 3.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:A/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 6.5, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 1.4, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 7.2, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:L", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 2.7, "source": "cve@mitre.org", "type": "Secondary"}]}, "published": "2022-03-27T13:15:13.573", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://github.com/pompel123/Tesla-Charging-Port-Opener"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://twitter.com/IfNotPike/status/1507818836568858631"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory"], "url": "https://twitter.com/IfNotPike/status/1507852693699661827"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}