CVE-2023-33281

MEDIUM

Nissan Sylphy Classic 2021 - Replay Attack

Title source: llm

Description

The remote keyfob system on Nissan Sylphy Classic 2021 sends the same RF signal for each door-open request, which allows for a replay attack. NOTE: the vendor's position is that this cannot be reproduced with genuine Nissan parts: for example, the combination of keyfob and door handle shown in the exploit demonstration does not match any technology that Nissan provides to customers.

References (3)

Scores

CVSS v3 6.5
EPSS 0.0003
EPSS Percentile 9.6%
Attack Vector ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Classification

CWE
CWE-294
Status published

Affected Products (1)

nissan/sylphy_classic_2021_firmware

Timeline

Published May 22, 2023
Tracked Since Feb 18, 2026