CVE-2019-20626

{"id": "CVE-2019-20626", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 3.3, "accessVector": "ADJACENT_NETWORK", "vectorString": "AV:A/AC:L/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 6.5, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.8}]}, "published": "2020-03-23T17:15:15.237", "references": [{"url": "https://github.com/HackingIntoYourHeart/Unoriginal-Rice-Patty", "tags": ["Exploit", "Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://medium.com/%40victor_14768/replay-attacks-en-autos-206481dcfee1", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-294"}]}], "descriptions": [{"lang": "en", "value": "The remote keyless system on Honda HR-V 2017 vehicles sends the same RF signal for each door-open request, which might allow a replay attack."}, {"lang": "es", "value": "El sistema keyless remoto en los veh\u00edculos Honda HR-V 2017 env\u00eda la misma se\u00f1al de RF para cada petici\u00f3n de apertura de puerta, lo que podr\u00eda permitir un ataque de repetici\u00f3n."}], "lastModified": "2023-11-07T03:09:11.443", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:honda:hr-v_2017_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "23FF08D1-F61B-4D48-9E3B-EB1D6DB4180E"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:honda:hr-v_2017:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A6B81C6A-296B-4BA3-84E3-A639BD6F8643"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}