CVE-2026-2541

Micca KE700 - Info Disclosure

Title source: llm

Description

The Micca KE700 system relies on a 6-bit portion of an identifier for authentication within rolling codes, providing only 64 possible combinations. This low entropy allows an attacker to perform a brute-force attack against one component of the rolling code. Successful exploitation simplify an attacker to predict the next valid rolling code, granting unauthorized access to the vehicle.

References (1)

[Various Sources] https://asrg.io/security-advisories/cve-2026-2541/

Scores

EPSS 0.0003

EPSS Percentile 7.0%

Classification

CWE

CWE-331

Status draft

Timeline

Published Feb 15, 2026

Tracked Since Feb 18, 2026