Vulnerabilities (CVE)

Filtered by vendor Honda Subscribe
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-2943 1 Honda 1 Moto Linc 2024-11-21 4.3 MEDIUM 5.9 MEDIUM
Honda Moto LINC 1.6.1 does not verify SSL certificates.
CVE-2022-37305 1 Honda 2 Honda, Honda Firmware 2024-02-28 N/A 6.4 MEDIUM
The Remote Keyless Entry (RKE) receiving unit on certain Honda vehicles through 2018 allows remote attackers to perform unlock operations and force a resynchronization after capturing five consecutive valid RKE signals over the radio, aka a RollBack attack. The attacker retains the ability to unlock indefinitely.
CVE-2022-27254 1 Honda 2 Civic 2018, Civic 2018 Firmware 2024-02-28 2.9 LOW 5.3 MEDIUM
The remote keyless system on Honda Civic 2018 vehicles sends the same RF signal for each door-open request, which allows for a replay attack, a related issue to CVE-2019-20626.
CVE-2021-46145 1 Honda 1 Civic 2012 2024-02-28 2.9 LOW 5.3 MEDIUM
The keyfob subsystem in Honda Civic 2012 vehicles allows a replay attack for unlocking. This is related to a non-expiring rolling code and counter resynchronization.
CVE-2019-20626 1 Honda 2 Hr-v 2017, Hr-v 2017 Firmware 2024-02-28 3.3 LOW 6.5 MEDIUM
The remote keyless system on Honda HR-V 2017 vehicles sends the same RF signal for each door-open request, which might allow a replay attack.