CVE-2020-10558
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
4Exploited in Wild
-Decision
Descriptions
The driving interface of Tesla Model 3 vehicles in any release before 2020.4.10 allows Denial of Service to occur due to improper process separation, which allows attackers to disable the speedometer, web browser, climate controls, turn signal visual and sounds, navigation, autopilot notifications, along with other miscellaneous functions from the main screen.
La interfaz de manejo de Tesla Model 3 en cualquier versión anterior a 2020.4.10, permite que se presente una Denegación de Servicio debido a una separación del proceso inapropiada, que permite a atacantes deshabilitar el velocímetro, navegador web, controles climáticos, señal de giro visual y sonidos, navegación, notificaciones de piloto automático, en conjunto con otras funciones diversas desde la pantalla principal.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2020-03-13 CVE Reserved
- 2020-03-20 CVE Published
- 2021-06-27 First Exploit
- 2023-03-08 EPSS Updated
- 2024-08-04 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
CAPEC
References (4)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|---|---|
| https://github.com/nullze/CVE-2020-10558 | 2024-05-17 | |
| https://github.com/AmazingOut/Tesla-CVE-2020-10558 | 2021-06-27 | |
| https://cylect.io/blog/Tesla_Model_3_Vuln | 2024-08-04 | |
| https://safekeepsecurity.com/about/cve-2020-10558 | 2024-08-04 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Tesla Search vendor "Tesla" | Model 3 Web Interface Search vendor "Tesla" for product "Model 3 Web Interface" | < 2020.4.10 Search vendor "Tesla" for product "Model 3 Web Interface" and version " < 2020.4.10" | - |
Affected
| ||||||