CVE Details
Basic Information
| Title | Autoeastern Smart Keyless Entry System Replay Attack |
|---|---|
| Type | cve |
| Published | 2025-06-13T14:38:58.103Z |
| Last Seen |
Product Information
| Vendor | Autoeastern |
|---|---|
| Product | Cyclone Matrix TRF |
| Version | 2024 |
CVSS Information
| Base Score | 9.4 (CRITICAL) |
|---|---|
| Attack Vector | CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/AU:N |
| Confidentiality Impact | |
| Integrity Impact | |
| Availability Impact |
AI Analysis
| AI Description | The vulnerability in the Autoeastern Cyclone Matrix TRF Smart Keyless Entry System allows a replay attack due to the use of fixed learning codes in the Key Fob Transmitter. This affects the 2024 KIA Soluto and other KIA models in Ecuador. |
|---|---|
| AI Severity | Critical |
| Vendor | Autoeastern |
| Product | Cyclone Matrix TRF Smart Keyless Entry System |
| Affected Version | 2024 |
Affected Products
- Autoeastern Cyclone Matrix TRF 2024
Additional Information
| CVE List | |
|---|---|
| CWE List | CWE-307, CWE-294 |
| Bulletin Family |
References
Description
Use of fixed learning codes, one code to lock the car and the other code to unlock it, in the Key Fob Transmitter in Cyclone Matrix TRF Smart Keyless Entry System, which allows a replay attack.
Research was completed on the 2024 KIA Soluto. Attack confirmed on other KIA Models in Ecuador.