引領零時差漏洞發現的汽車網路安全盛事
Pwn2Own Automotive 網路安全挑戰賽 2026
透過零時差漏洞發現,保障聯網移動生態系統安全
加速汽車零時差漏洞的發現
VicOne 提升業界對不斷擴大的聯網車輛攻擊面之認知,強調強化產業防禦新興與演進威脅的迫切性。
聚焦聯網車輛及其互聯系統
VicOne 強調不僅需要保護車輛的複雜元件,還需保護其聯網技術,為更強大、更具韌性的網路安全防護鋪路。
促進跨產業合作
VicOne 建立安全研究人員與汽車產業利害關係人之間的策略夥伴關係,確保每一項漏洞發現都能轉化為具體行動,強化聯網移動生態系統。
憑藉 VicOne 無與倫比的威脅情報,以及趨勢科技久經驗證的 Trend Zero Day Initiative(ZDI),Pwn2Own Automotive 2026 以 Tesla 和 Alpitronic 為冠名贊助商,提供參賽者超過100萬美元的現金和獎品。
VicOne 守護移動未來
協助汽車製造商和供應商識別並修復漏洞
Pwn2Own Automotive 競賽類別
透過發現零時差漏洞,本活動讓安全研究人員揭露未知、未公開及未通報的漏洞,促進汽車產業的早期風險識別與緩解。
與在汽車網路安全領域擁有無與倫比專業知識和經驗的 VicOne 合作舉辦此競賽,是向汽車產業和研究社群展示我們安全研究實力的關鍵一步。
我們相信,能夠在匯聚汽車與移動未來技術的 Automotive World 舉辦有助於提升聯網車輛和 SDV 安全性的 Pwn2Own Automotive 具有重大意義。我們將透過本展覽和活動,為實現更安全的移動社會做出貢獻。
Pwn2Own Automotive 最新消息
Pwn2Own Automotive 2026 Day 3: New Master of Pwn Announced and Other Highlights
Pwn2Own Automotive 2026 set a new record with 76 unique zero-day vulnerabilities discovered, exposing the rapidly expanding attack surface across SDVs, IVI systems, and EV charging infrastructure. The final day crowned Fuzzware.io as Master of Pwn 2026, with 28 Master of Pwn points.
閱讀更多 →Pwn2Own Automotive 2026: Uncovering 37 Unique Zero-Days
Pwn2Own Automotive 2026 Day 1 opened with record-breaking momentum, with researchers successfully compromising infotainment systems, EV chargers, and Tesla interfaces—highlighting how expansive today’s automotive attack surface has become. The surge in entries and chained exploits confirms a clear shift: in the SDV era, automotive cyber risk is no longer isolated to the vehicle, but systemic across the entire ecosystem.
閱讀更多 →Pwn2Own Automotive 2026 Day 2: EV Chargers Hit Full Throttle
Day 2 delivered 29 new zero-days, pushing the total to a record 66. Researchers repeatedly compromised Level 2/3 EV chargers and IVI systems using practical flaws like exposed interfaces and command injection. The takeaway: automotive and charging infrastructure attacks are now repeatable at scale—shifting cyber risk from theoretical to immediate operational impact.
閱讀更多 →Pwn2Own Automotive 2026 蓄勢待發:規則、目標及最新動態
第三屆Pwn2Own Automotive 漏洞發掘競賽將於 2026 年 1 月再次於東京舉辦這場賽事。看完這篇文章,了解這場全球規模最大的汽車領域道德駭客競賽的比賽規則、目標及最新動態。
閱讀更多 →從 VicOne 深入瞭解汽車漏洞
Pwn2Own Automotive 2026 Day 3: New Master of Pwn Announced and Other Highlights
Pwn2Own Automotive 2026 set a new record with 76 unique zero-day vulnerabilities discovered, exposing the rapidly expanding attack surface across SDVs, IVI systems, and EV charging infrastructure. The final day crowned Fuzzware.io as Master of Pwn 2026, with 28 Master of Pwn points.
閱讀更多 →Pwn2Own Automotive 2026: Turning Zero-Day Discovery into Automotive Foresight
Pwn2Own Automotive 2026 exposes critical zero-day vulnerabilities in software-defined vehicles before they escalate into real-world business and operational risk. By ensuring zero-day vulnerabilities move from exposure to resolution, the event transforms discovery into Automotive Foresight—helping organizations stay ahead of risk before it reaches the road.
閱讀更多 →了解電動車充電通訊中的漏洞:資安洞察與更廣泛的影響
這篇文章分析了近期 DEF CON 33 大會上揭露的電動車 (EV) 充電通訊漏洞,說明其緩解措施和對整個產業所帶來更廣泛深遠的影響。
閱讀更多 →來自Pwn2Own Automotive:零日漏洞如何暴露電動車充電樁網路安全標準的不足Standards
我們分析了Pwn2Own Automotive競賽中發現的電動車充電樁漏洞,揭示現行電動車充電樁網路安全標準的不足之處,以及為何更強大、更統一的資安防護措施對於保障充電基礎設施的安全至關重要。
閱讀更多 →Pwn2Own Automotive漏洞解析:Phoenix Contact CHARX SEC-3100 EV充電控制器的2個RCE漏洞
在 Pwn2Own Automotive 2024 期間,研究人員發現Phoenix Contact CHARX SEC-3100電動車充電控制器存在著兩個遠端程式碼執行(RCE)漏洞。我們將深入探討這些漏洞的影響及可能的緩解措施。
閱讀更多 →Pwn2Own Automotive漏洞解析:Autel MaxiCharger 中更多基於堆疊的緩衝區溢出漏洞
我們研究了在 Pwn2Own Automotive 競賽中發現的兩個 Autel MaxiCharger 漏洞:CVE-2024-23967 和 CVE-2024-23957。這兩個漏洞都被分類為基於堆疊的緩衝區溢出,這是一種經典但可避免的程式錯誤,可能會導致遠端程式碼執行。
閱讀更多 →Pwn2Own Automotive漏洞解析:JuiceBox 40 智慧電動車充電站中基於堆疊的緩衝區溢位漏洞
我們研究了在 Pwn2Own Automotive 競賽中發現的 JuiceBox 40 智慧電動車充電站漏洞 CVE-2024-23938,並討論了其對汽車產業造成的更廣泛影響。
閱讀更多 →
常見問題(FAQ)
什麼是 Pwn2Own Automotive?
Pwn2Own Automotive 是一項獨一無二的活動,致力於發現和修復聯網車輛與軟體定義車輛(SDV)技術中的漏洞。該活動由 VicOne 和 Trend ZDI 共同主辦,Tesla 和 Alpitronic 為冠名贊助商。顧名思義,Pwn2Own Automotive 是 Pwn2Own 的汽車專屬衍生競賽。Pwn2Own 將潛在的未來威脅轉化為網路安全挑戰,邀請參賽者發現零時差漏洞。如欲瞭解 Pwn2Own 近二十年的歷史與演進,請點此查看。
Pwn2Own Automotive 2026 何時何地舉辦?
日期:2026年1月21日至23日
地點:日本東京國際展示場(Tokyo Big Sight),Automotive World 展會期間
如何報名參加?
Pwn2Own Automotive:Pwn2Own Automotive 2026 的參賽者報名截止日期為2026年1月15日。有意參加者可將詳述其漏洞利用鏈和執行說明的白皮書提交至 pwn2own@trendmicro.com。欲瞭解更多資訊,請閱讀完整的 Pwn2Own Automotive 規則,請點擊此處。
Automotive World:Pwn2Own Automotive 舉辦場地 Automotive World 的參觀者報名可至此處。
旅行相關需求有哪些?
Pwn2Own Automotive 2026 的競賽類別和獎項有哪些?
類別:Pwn2Own Automotive 2026 設有六大類別:Tesla、車載資訊娛樂系統(IVI)、Level 3 電動車充電樁、Level 2 電動車充電樁、Open Charge Alliance 及車載作業系統。每個類別都有一組目標,參賽者可在報名時選擇。所有參賽作品須對目標裝置進行安全挑戰,並展示在該裝置上的任意程式碼執行。
現金及獎品:針對各類別目標的漏洞發現和利用技術,將頒發總計超過100萬美元的現金和獎品。在所選類別中首位成功完成安全挑戰的參賽者將獲得該特定目標所分配的獎金。Pwn2Own Automotive 2026 還將加冕「Master of Pwn」(駭客之王),作為競賽的總冠軍。
欲瞭解更多資訊,請閱讀完整的 Pwn2Own Automotive 2026 規則,請點擊此處。
Pwn2Own Automotive 為何重要?
Pwn2Own Automotive 是全球頂尖安全研究人員齊聚一堂,在最新汽車技術中發現漏洞的競賽。支持 Pwn2Own Automotive 有助於在 SDV 時代建立全面的風險管理體系。
- 為 SDV 時代做好準備
隨著軟體日益控制車輛功能,對漏洞和風險的擔憂也隨之增長。Pwn2Own Automotive 透過零時差漏洞發現和事件預防來強化安全,為未來的車輛安全奠定基礎。 - 提升產品安全並降低風險
透過在真實環境中測試最新汽車技術,Pwn2Own Automotive 能在零時差漏洞流入地下市場之前及早發現。這種主動防禦方式能預防網路攻擊、提升產品安全並降低風險。 - 提升全產業安全意識並建立合作框架
透過在汽車產業推廣網路安全意識並促進合作,Pwn2Own Automotive 致力於提升網路安全標準,實現更安全的汽車生態系統。 - 推進安全研究並培育人才
透過表彰和獎勵漏洞發現者,Pwn2Own Automotive 培育專業的網路安全人才。在真實環境中的實戰經驗能提升產業整體安全能力。
2026年1月,讓我們在東京齊聚,共同參與這場推動汽車產業邁向強健且有韌性的網路安全之盛事。
Pwn2Own Automotive 賽程表
Day 1 | January 21, 2026
| Time | Team | Target | Category |
|---|---|---|---|
| 11:00 a.m. | Hacking Group | Kenwood DNR1007XR | In-Vehicle Infotainment (IVI) Systems |
| Fuzzware.io | Autel MaxiCharger AC Elite Home 40A EV Charger with add-on | Level 2 Electric (EV) Chargers | |
| Neodyme | Alpine iLX-F511 | In-Vehicle Infotainment (IVI) Systems | |
| Team DDOS | ChargePoint Home Flex (Model CPH50-K) with add-on | Level 2 Electric (EV) Chargers | |
| 299 | Grizzl-E Smart 40A | Level 2 Electric (EV) Chargers | |
| 12:00 p.m. | Petworks | Phoenix Contact CHARX SEC-3150 with add-on | Level 2 Electric (EV) Chargers |
| 12:30 p.m. | Fuzzware.io | Kenwood DNR1007XR | In-Vehicle Infotainment (IVI) Systems |
| Synacktiv | Sony XAV-9500ES | In-Vehicle Infotainment (IVI) Systems | |
| Compass Security | Alpine iLX-F511 | In-Vehicle Infotainment (IVI) Systems | |
| 2:00 p.m. | Yannik Luca Marchand | Kenwood DNR1007XR | In-Vehicle Infotainment (IVI) Systems |
| CIS | Alpine iLX-F511 | In-Vehicle Infotainment (IVI) Systems | |
| Synacktiv | Infotainment USB-based Attack | Tesla | |
| Fuzzware.io | EMPORIA Pro Charger Level 2 with add-on | Level 2 Electric (EV) Chargers | |
| Compass Security | Grizzl-E Smart 40A with add-on | Level 2 Electric (EV) Chargers | |
| 3:00 p.m. | Team DDOS | Autel MaxiCharger AC Elite Home 40A EV Charger with add-on | Level 2 Electric (EV) Chargers |
| 3:30 p.m. | GMO Cybersecurity by Ierae, Inc. | Kenwood DNR1007XR | In-Vehicle Infotainment (IVI) Systems |
| Mia Miku Deutsch | Alpine iLX-F511 | In-Vehicle Infotainment (IVI) Systems | |
| Fuzzware.io | Alpitronic HYC50 - Field Mode | Level 3 Electric (EV) Chargers | |
| CyCraft Technology | Grizzl-E Smart 40A | Level 2 Electric (EV) Chargers | |
| 4:00 p.m. | Zeroshi | Phoenix Contact CHARX SEC-3150 with add-on | Level 2 Electric (EV) Chargers |
| 5:00 p.m. | Interrupt Labs | Kenwood DNR1007XR | In-Vehicle Infotainment (IVI) Systems |
| 78 ResearchLab | Alpine iLX-F511 | In-Vehicle Infotainment (IVI) Systems | |
| Team DDOS | Grizzl-E Smart 40A with add-on | Level 2 Electric (EV) Chargers | |
| 5:30 p.m. | Fuzzware.io | Sony XAV-9500ES | In-Vehicle Infotainment (IVI) Systems |
| Viettel Cyber Security | ChargePoint Home Flex (Model CPH50-K) | Level 2 Electric (EV) Chargers | |
| 6:30 p.m. | FPT NightWolf | Kenwood DNR1007XR | In-Vehicle Infotainment (IVI) Systems |
| Team K | Alpine iLX-F511 | In-Vehicle Infotainment (IVI) Systems | |
| 78 ResearchLab | Phoenix Contact CHARX SEC-3150 | Level 2 Electric (EV) Chargers | |
| Jonathan Conrad | Grizzl-E Smart 40A | Level 2 Electric (EV) Chargers | |
| 7:00 p.m. | ANHTUD | Sony XAV-9500ES | In-Vehicle Infotainment (IVI) Systems |
Day 2 | January 22, 2026
| Time | Team | Target | Category |
|---|---|---|---|
| 10:30 a.m. | Team DDOS | Kenwood DNR1007XR | In-Vehicle Infotainment (IVI) Systems |
| Team MAMMOTH | Alpine iLX-F511 | In-Vehicle Infotainment (IVI) Systems | |
| FuzzingLabs | Phoenix Contact CHARX SEC-3150 | Level 2 Electric (EV) Chargers | |
| InnoEdge Labs | Alpitronic HYC50 - Lab Mode | Level 3 Electric (EV) Chargers | |
| Autocrypt | Grizzl-E Smart 40A with add-on | Level 2 Electric (EV) Chargers | |
| 11:30 a.m. | Neodyme | Sony XAV-9500ES | In-Vehicle Infotainment (IVI) Systems |
| 12:00 p.m. | Summoning Team | Kenwood DNR1007XR | In-Vehicle Infotainment (IVI) Systems |
| Viettel Cyber Security | Alpine iLX-F511 | In-Vehicle Infotainment (IVI) Systems | |
| Joshua Foote | Grizzl-E Smart 40A with add-on | Level 2 Electric (EV) Chargers | |
| 12:30 p.m. | Fuzzware.io | Phoenix Contact CHARX SEC-3150 with add-on | Level 2 Electric (EV) Chargers |
| Xilokar | Alpitronic HYC50 - Lab Mode | Level 3 Electric (EV) Chargers | |
| 1:00 p.m. | PHP Hooligans / Midnight Blue | Autel MaxiCharger AC Elite Home 40A EV Charger with add-on | Level 2 Electric (EV) Chargers |
| 1:30 p.m. | 78ResearchLab | Kenwood DNR1007XR | In-Vehicle Infotainment (IVI) Systems |
| GMO Cybersecurity by Ierae, Inc | Alpine iLX-F511 | In-Vehicle Infotainment (IVI) Systems | |
| BoB::Takedown | Grizzl-E Smart 40A | Level 2 Electric (EV) Chargers | |
| 2:30 p.m. | Autocrypt | Autel MaxiCharger AC Wallbox Commercial with add-on | Level 2 Electric (EV) Chargers |
| Technical Debt Collectors | Automotive Grade Linux | Automotive Operating Systems | |
| Fuzzware.io | ChargePoint Home Flex (Model CPH50-K) with add-on | Level 2 Electric (EV) Chargers | |
| 3:00 p.m. | Joshua Foote | Kenwood DNR1007XR | In-Vehicle Infotainment (IVI) Systems |
| Qrious Secure | Alpine iLX-F511 | In-Vehicle Infotainment (IVI) Systems | |
| 4:00 p.m. | Synacktiv | Autel MaxiCharger AC Elite Home 40A EV Charger with add-on | Level 2 Electric (EV) Chargers |
| Team DDOS | Phoenix Contact CHARX SEC-3150 with add-on | Level 2 Electric (EV) Chargers | |
| 4:30 p.m. | Petoworks | Alpine iLX-F511 | In-Vehicle Infotainment (IVI) Systems |
| SummoningTeam | ChargePoint Home Flex (Model CPH50-K) with add-on | Level 2 Electric (EV) Chargers | |
| 5:00 p.m. | Fuzzware.io | Grizzl-E Smart 40A with add-on | Level 2 Electric (EV) Chargers |
| 6:00 p.m. | Petoworks | Kenwood DNR1007XR | In-Vehicle Infotainment (IVI) Systems |
| BoB::Takedown | Phoenix Contact CHARX SEC-3150 | Level 2 Electric (EV) Chargers | |
| 6:30 p.m. | SummoningTeam | Alpine iLX-F511 | In-Vehicle Infotainment (IVI) Systems |
| ZIEN | ChargePoint Home Flex (Model CPH50-K) | Level 2 Electric (EV) Chargers | |
| Evan Grant | Grizzl-E Smart 40A with add-on | Level 2 Electric (EV) Chargers |
Day 3 | January 23, 2026
| Time | Team | Target | Category |
|---|---|---|---|
| 10:30 a.m. | Team MST | Kenwood DNR1007XR | In-Vehicle Infotainment (IVI) Systems |
| Viettel Cyber Security | Sony XAV-9500ES | In-Vehicle Infotainment (IVI) Systems | |
| Fuzzware.io | Alpine iLX-F511 | In-Vehicle Infotainment (IVI) Systems | |
| Qrious Secure | Grizzl-E Smart 40A | Level 2 Electric (EV) Chargers | |
| 12:00 p.m. | Qrious Secure | Kenwood DNR1007XR | In-Vehicle Infotainment (IVI) Systems |
| Team DDOS | Alpine iLX-F511 | In-Vehicle Infotainment (IVI) Systems | |
| Petoworks | Grizzl-E Smart 40A with add-on | Level 2 Electric (EV) Chargers | |
| 1:00 p.m. | Juurin | Alpitronic HYC50 - Lab Mode | Level 3 Electric (EV) Chargers |
| 1:30 p.m. | Viettel Cyber Security | Kenwood DNR1007XR | In-Vehicle Infotainment (IVI) Systems |
| Autocrypt | Alpine iLX-F511 | In-Vehicle Infotainment (IVI) Systems | |
| 3:00 p.m. | Juurin | Kenwood DNR1007XR | In-Vehicle Infotainment (IVI) Systems |
| Pwn4S0n1c | Autel MaxiCharger AC Elite Home 40A EV Charger | Level 2 Electric (EV) Chargers | |
| FPT NightWolf | Alpine iLX-F511 | In-Vehicle Infotainment (IVI) Systems |