PT-2025-35942 · Tesla · Tesla Model 3
Netanel Saka
+1
·
Published
2025-09-04
·
Updated
2025-09-04
·
CVE-2025-6785
CVSS v4.0
4.7
Medium
| Vector | AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:Y/R:A/V:D/RE:L/U:Amber |
Name of the Vulnerable Software and Affected Versions
Tesla Model 3 versions 2023.Xx through 2023.43
Description
Securing externally available CAN wires can easily allow physical access to the CAN bus, potentially enabling the injection of specially formed CAN messages to control remote start functions of the vehicle.
Recommendations
Update software to version 2023.44 or later.
Fix
Special Elements Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Tesla Model 3