Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
This vulnerability allows physical attackers to execute arbitrary code on affected Tesla vehicles. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ice_updater update mechanism. The issue results from the lack of proper validation of user-supplied firmware. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-17463.
CVSS Information
N/A
Vulnerability Type
检查时间与使用时间(TOCTOU)的竞争条件
Vulnerability Title
Tesla 安全漏洞
Vulnerability Description
Tesla(特斯拉)是美国特斯拉(Tesla)公司的一款电动汽车。 Tesla Model 3 存在安全漏洞,该漏洞源于 ice_updater 组件未对用户提供的固件进行适当验证。
CVSS Information
N/A
Vulnerability Type
N/A