CVE-2020-10558 Detail Current Description The driving interface of Tesla Model 3 vehicles in any release before 2020.4.10 allows Denial of Service to occur due to improper process separation, which allows attackers to disable the speedometer, web browser, climate controls, turn signal visual and sounds, navigation, autopilot notifications, along with other miscellaneous functions from the main screen.

View Analysis Description Analysis Description The driving interface of Tesla Model 3 vehicles in any release before 2020.4.10 allows Denial of Service to occur due to improper process separation, which allows attackers to disable the speedometer, web browser, climate controls, turn signal visual and sounds, navigation, autopilot notifications, along with other miscellaneous functions from the main screen. Severity CVSS Version 3.x CVSS Version 2.0



CVSS 3.x Severity and Metrics:

NIST: NVD Base Score: 6.5 MEDIUM Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS 2.0 Severity and Metrics:



NIST: NVD Base Score: 7.1 HIGH Vector: (AV:N/AC:M/Au:N/C:N/I:N/A:C) Weakness Enumeration CWE-ID CWE Name Source CWE-269 Improper Privilege Management NIST Known Affected Software Configurations Switch to CPE 2.2 CPEs loading, please wait. Denotes Vulnerable Software

Are we missing a CPE here? Please let us know.

Change History 1 change records found show changes Initial Analysis 3/25/2020 2:5:30 PM Action Type Old Value New Value Added CPE Configuration OR *cpe:2.3:a:tesla:model_3_web_interface:*:*:*:*:*:*:*:* versions up to (excluding) 2020.4.10



Added CVSS V2 NIST (AV:N/AC:M/Au:N/C:N/I:N/A:C)



Added CVSS V2 Metadata Victim must voluntarily interact with attack mechanism



Added CVSS V3.1 NIST AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H



Added CWE NIST CWE-269



Changed Reference Type https://safekeepsecurity.com/about/cve-2020-10558/ No Types Assigned



https://safekeepsecurity.com/about/cve-2020-10558/ Exploit, Third Party Advisory



Quick Info CVE Dictionary Entry:

CVE-2020-10558

NVD Published Date:

03/20/2020

NVD Last Modified:

03/25/2020

Source:

MITRE

