AI description
CVE-2025-6029 is a vulnerability affecting KIA-branded Aftermarket Generic Smart Keyless Entry Systems, primarily distributed in Ecuador. It stems from the use of fixed learning codes in the key fobs, where the same code is used to lock and unlock the car. This static authentication mechanism makes the system susceptible to replay attacks. An attacker in close proximity can capture the radio frequency signal transmitted by the key fob and replay it to gain unauthorized access to the vehicle. This could allow them to unlock and potentially steal the car. The vulnerability affects Kia Soluto, Rio, and Picanto models from 2022 through 2025.
- Description
- Use of fixed learning codes, one code to lock the car and the other code to unlock it, the Key Fob Transmitter in KIA-branded Aftermarket Generic Smart Keyless Entry System, primarily distributed in Ecuador, which allows a replay attack. Manufacture is unknown at the time of release. CVE Record will be updated once this is clarified.
- Source
- cve@asrg.io
- NVD status
- Awaiting Analysis
CVSS 4.0
- Type
- Secondary
- Base score
- 9.4
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:X/V:X/RE:X/U:X
- Severity
- CRITICAL
- cve@asrg.io
- CWE-294
- Hype score
- Not currently trending
Un fallo de seguridad (CVE-2025-6029) afecta a los modelos 2022-2025 de KIA en Ecuador que utilizan llaveros obsoletos con chips vulnerables HS2240 y EV1527 Los atacantes pueden desbloquear los vehículos de forma remota https://t.co/5vEOC4o2Di
@elhackernet
19 Jun 2025
4377 Impressions
21 Retweets
58 Likes
9 Bookmarks
0 Replies
0 Quotes
#carhacking my cves CVE-2025-6029 and CVE-2025-6030 affects thousands of cars. Check the new: https://t.co/eH6eauIkOj https://t.co/SK3eemkfck
@revers3vrything
18 Jun 2025
1054 Impressions
9 Retweets
15 Likes
3 Bookmarks
1 Reply
0 Quotes
A security flaw (CVE-2025-6029) affects 2022-2025 KIA models in Ecuador using outdated key fobs with vulnerable chips HS2240 & EV1527. Attackers can exploit replay & brute force to unlock vehicles remotely. 🚗🔓 #KIA #Ecuador #Security https://t.co/5rcTcE2sz1
@TweetThreatNews
16 Jun 2025
44 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Critical flaws (CVE-2025-6029, CVE-2025-6030) in KIA Ecuador key fobs allow remote vehicle unlocking and control via insecure learning code technology. #KIA #VehicleSecurity #KeyFobHack #Cybersecurity #Automotive https://t.co/Sqhcb042dk
@the_yellow_fall
16 Jun 2025
51 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🗣️ CVE-2025-6029 & CVE-2025-6030: Replay Attacks Expose Vulnerabilities in KIA and Autoeastern Smart Keyless Entry Systems https://t.co/r1nWQkXr3i
@fridaysecurity
16 Jun 2025
35 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚗🔓 Critical alert: CVE-2025-6029 exposes KIA aftermarket smart keyless systems (2022/2023, Ecuador) to replay attacks. No patch yet—audit your fleet! https://t.co/PHIPJTJNFl #OffSeq #CVE20256029 #AutomotiveSec... https://t.co/RcXhmbTzv3
@offseq
14 Jun 2025
53 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-6029 Replay Attack Vulnerability in KIA Generic Smart Keyless Entry System https://t.co/7HA1Q1vOwQ
@VulmonFeeds
13 Jun 2025
9 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-6029 Use of fixed learning codes, one code to lock the car and the other code to unlock it, the Key Fob Transmitter in KIA-branded Aftermarket Generic Smart Keyless Entry S… https://t.co/yebKu31nY8
@CVEnew
13 Jun 2025
390 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-6029: CRITICAL] Vulnerability detected in KIA-branded Generic Smart Keyless Entry System distributed in Ecuador allows reply attacks due to fixed learning codes. Unknown manufacturer at this time. CV...#cve,CVE-2025-6029,#cybersecurity https://t.co/RsHPu3DRu3 https://t.
@CveFindCom
13 Jun 2025
33 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes