CVE-2022-37305

The Remote Keyless Entry (RKE) receiving unit on certain Honda vehicles through 2018 allows remote attackers to perform unlock operations and force a resynchronization after capturing five consecutive valid RKE signals over the radio, aka a RollBack attack. The attacker retains the ability to unlock indefinitely.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:honda:honda_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:honda:honda:-:*:*:*:*:*:*:*

Information

Published : 2022-08-23 23:15

Updated : 2022-08-31 08:45


NVD link : CVE-2022-37305

Mitre link : CVE-2022-37305


JSON object : View

CWE
CWE-294

Authentication Bypass by Capture-replay

Advertisement

dedicated server usa

Products Affected

honda

  • honda
  • honda_firmware