The Remote Keyless Entry (RKE) receiving unit on certain Mazda vehicles through 2020 allows remote attackers to perform unlock operations and force a resynchronization after capturing three consecutive valid key-fob signals over the radio, aka a RollBack attack. The attacker retains the ability to unlock indefinitely.
References
Configurations
Configuration 1 (hide)
AND |
|
History
No history.
Information
Published : 2022-08-24 06:15
Updated : 2024-11-21 07:14
NVD link : CVE-2022-36945
Mitre link : CVE-2022-36945
CVE.ORG link : CVE-2022-36945
JSON object : View
Products Affected
mazda
- mazda_firmware
- mazda
CWE
CWE-294
Authentication Bypass by Capture-replay