CVE-2025-61081

Name of the Vulnerable Software and Affected Versions BYD Atto3 (affected versions not specified)

Description An attacker can obtain a permanently available authentication key through a Brute Force attack. This key allows unauthorized flashing of the Electronic Parking Break (EPB) and Supplemental Restoration System (SRS) related Electronic Control Units (ECUs), which are embedded systems that control specific vehicle functions.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.