CVSS: 7.1EPSS: 28%CPEs: 1EXPL: 4CVE-2020-10558
https://notcve.org/view.php?id=CVE-2020-10558
20 Mar 2020 — The driving interface of Tesla Model 3 vehicles in any release before 2020.4.10 allows Denial of Service to occur due to improper process separation, which allows attackers to disable the speedometer, web browser, climate controls, turn signal visual and sounds, navigation, autopilot notifications, along with other miscellaneous functions from the main screen. La interfaz de manejo de Tesla Model 3 en cualquier versión anterior a 2020.4.10, permite que se presente una Denegación de Servicio debido a una sep... • https://github.com/nullze/CVE-2020-10558 •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2019-9977
https://notcve.org/view.php?id=CVE-2019-9977
24 Mar 2019 — The renderer process in the entertainment system on Tesla Model 3 vehicles mishandles JIT compilation, which allows attackers to trigger firmware code execution, and display a crafted message to vehicle occupants. El proceso renderer en el sistema de entretenimiento en los vehículos de Tesla modelo 3 gestiona de manera incorrecta la compilación JIT, lo que permite que los atacantes desencadenen la ejecución de código del firmware y muestren un mensaje manipulado a los ocupantes del vehículo. • http://www.securityfocus.com/bid/107551 •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2016-9337
https://notcve.org/view.php?id=CVE-2016-9337
13 Feb 2017 — An issue was discovered in Tesla Motors Model S automobile, all firmware versions before version 7.1 (2.36.31) with web browser functionality enabled. The vehicle's Gateway ECU is susceptible to commands that may allow an attacker to install malicious software allowing the attacker to send messages to the vehicle's CAN bus, a Command Injection. Ha sido descubierto un problema en Tesla Motors Model S automobile, todas las versiones de firmware anteriores a la versión 7.1 (2.36.31) con funcionalidad de navega... • http://www.securityfocus.com/bid/94697 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •