Vulnerability in Remote Keyless Systems

Vulnerability in Remote Keyless Systems

March 24, 2022

Ayyappan Rajesh submitted a proof of concept for CVE-2022-27254 and showed how the keyless systems of different Honda vehicles send the same unencrypted radio frequency (RF) signal for commands like opening a car door and starting the engine remotely. This could allow threat actors to conduct a replay attack.

VicOne Solutions

UN R155 References

  • 4.3.2 Threats to vehicles regarding their communication channels
  • 4.3.6 Threats to vehicle data/code