Tesla Model 3 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Tesla Model 3 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (11)
CVE-2019-9977 — CVSS 8.8 (high): The renderer process in the entertainment system on Tesla Model 3 vehicles mishandles JIT compilation, which allows attackers to trigger…
CVE-2023-32156 — CVSS 8.8 (high): Tesla Model 3 Gateway Firmware Signature Validation Bypass Vulnerability. This vulnerability allows network-adjacent attackers to execute…
CVE-2022-42430 — CVSS 7.8 (high): This vulnerability allows local attackers to escalate privileges on affected Tesla vehicles. An attacker must first obtain the ability to…
CVE-2022-42431 — CVSS 7.8 (high): This vulnerability allows local attackers to escalate privileges on affected Tesla vehicles. An attacker must first obtain the ability to…
CVE-2023-32157 — CVSS 7.5 (high): Tesla Model 3 bsa_server BIP Heap-based Buffer Overflow Arbitrary Code Execution Vulnerability. This vulnerability allows network-adjacent…
CVE-2025-2082 — CVSS 7.5 (high): Tesla Model 3 VCSEC Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute…
CVE-2022-27948 — CVSS 7.2 (high): Certain Tesla vehicles through 2022-03-26 allow attackers to open the charging port via a 315 MHz RF signal containing a fixed sequence of…
CVE-2023-32155 — CVSS 7.0 (high): Tesla Model 3 bcmdhd Out-Of-Bounds Write Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate…
CVE-2020-15912 — CVSS 6.5 (medium): Tesla Model 3 vehicles allow attackers to open a door by leveraging access to a legitimate key card, and then using NFC Relay. NOTE: the…
CVE-2022-3093 — CVSS 6.4 (medium): This vulnerability allows physical attackers to execute arbitrary code on affected Tesla vehicles. Authentication is not required to…
CVE-2022-37709 — CVSS 5.3 (medium): Tesla Model 3 V11.0(2022.4.5.1 6b701552d7a6) Tesla mobile app v4.23 is vulnerable to Authentication Bypass by spoofing. Tesla Model 3's…