Most recent sightings.

Most recent sightings. https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Mon, 08 Jun 2026 17:38:58 +0000 16b6bf02-4009-472a-9642-67b6a3f7b2f3 https://vulnerability.circl.lu/sighting/16b6bf02-4009-472a-9642-67b6a3f7b2f3/export {"uuid": "16b6bf02-4009-472a-9642-67b6a3f7b2f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27254", "type": "published-proof-of-concept", "source": "https://t.me/ShizoPrivacy/112", "content": "\u041d\u0435 \u043c\u043e\u0433 \u043e\u0431\u043e\u0439\u0442\u0438 \u0441\u0442\u043e\u0440\u043e\u043d\u043e\u0439 \u044d\u0442\u0443 CVE-2022-27254(Mitre)\n\u042d\u0442\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 Honda Civic(LX, EX, EX-L, Touring, Si, Type R) 2016-2020 \u0433\u043e\u0434\u043e\u0432 \u0432\u044b\u043f\u0443\u0441\u043a\u0430. \u0421\u0443\u0442\u044c \u0432 \u0447\u0451\u043c: \u0441\u0438\u0441\u0442\u0435\u043c\u0430 \u0431\u0435\u0441\u043a\u043b\u044e\u0447\u0435\u0432\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043d\u0430 \u0441\u0438\u0432\u0438\u043a\u0430\u0445 \u043f\u043e\u0441\u044b\u043b\u0430\u0435\u0442 \u043e\u0434\u0438\u043d \u0438 \u0442\u043e\u0442 \u0436\u0435 \u0440\u0430\u0434\u0438\u043e\u0447\u0430\u0441\u0442\u043e\u0442\u043d\u044b\u0439 \u0441\u0438\u0433\u043d\u0430\u043b \u0434\u043b\u044f \u043a\u0430\u0436\u0434\u043e\u0433\u043e \u0437\u0430\u043f\u0440\u043e\u0441\u0430 \u043d\u0430 \u043e\u0442\u043a\u0440\u044b\u0442\u0438\u0435 \u0434\u0432\u0435\u0440\u0438, \u0447\u0442\u043e \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043f\u0440\u043e\u0432\u043e\u0434\u0438\u0442\u044c \u043f\u043e\u0432\u0442\u043e\u0440\u043d\u0443\u044e \u0430\u0442\u0430\u043a\u0443, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0443\u044e \u0441 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u043e\u0439 CVE-2019-20626.\n\n\u0418\u0437 \u0430\u0440\u0441\u0435\u043d\u0430\u043b\u0430, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u043f\u043e\u0442\u0440\u0435\u0431\u043e\u0432\u0430\u043b\u0441\u044f \u0434\u043b\u044f \u0434\u043e\u043a\u0430\u0437\u0430\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0430 \u043a\u043e\u043d\u0446\u0435\u043f\u0446\u0438\u0438(PoC):\n\u2316FCCID.io\n\u2316HackRF One\n\u2316Gqrx\n\u2316GNURadio\n\u0421\u043e\u0431\u0441\u0442\u0432\u0435\u043d\u043d\u043e, \u0432\u043e\u0442 \u0438 \u0441\u0430\u043c PoC: \n\u25b6\ufe0f \u0442\u044b\u043a\n\nI couldn't ignore this CVE-2022-27254 (Mitre).\nThis vulnerability affects the 2016-2020 Honda Civic(LX, EX, EX-L, Touring, Si, Type R). The bottom line is this: the keyless access system on Civics sends the same radio frequency signal for each request to open the door, which allows for a repeat attack related to the CVE-2019-20626 problem .\nFrom the arsenal that was required for Proof of Concept(PoC):\n\u2316FCC ID.io\n\u2316HackRF One\n\u2316Gqrx\n\u2316GNURadio\nActually, here is the PoC itself:\n\u25b6\ufe0f click\n\n#cve #poc #car #hackrf", "creation_timestamp": "2022-11-03T21:45:14.000000Z"} {"uuid": "16b6bf02-4009-472a-9642-67b6a3f7b2f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27254", "type": "published-proof-of-concept", "source": "https://t.me/ShizoPrivacy/112", "content": "\u041d\u0435 \u043c\u043e\u0433 \u043e\u0431\u043e\u0439\u0442\u0438 \u0441\u0442\u043e\u0440\u043e\u043d\u043e\u0439 \u044d\u0442\u0443 CVE-2022-27254(Mitre)\n\u042d\u0442\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 Honda Civic(LX, EX, EX-L, Touring, Si, Type R) 2016-2020 \u0433\u043e\u0434\u043e\u0432 \u0432\u044b\u043f\u0443\u0441\u043a\u0430. \u0421\u0443\u0442\u044c \u0432 \u0447\u0451\u043c: \u0441\u0438\u0441\u0442\u0435\u043c\u0430 \u0431\u0435\u0441\u043a\u043b\u044e\u0447\u0435\u0432\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043d\u0430 \u0441\u0438\u0432\u0438\u043a\u0430\u0445 \u043f\u043e\u0441\u044b\u043b\u0430\u0435\u0442 \u043e\u0434\u0438\u043d \u0438 \u0442\u043e\u0442 \u0436\u0435 \u0440\u0430\u0434\u0438\u043e\u0447\u0430\u0441\u0442\u043e\u0442\u043d\u044b\u0439 \u0441\u0438\u0433\u043d\u0430\u043b \u0434\u043b\u044f \u043a\u0430\u0436\u0434\u043e\u0433\u043e \u0437\u0430\u043f\u0440\u043e\u0441\u0430 \u043d\u0430 \u043e\u0442\u043a\u0440\u044b\u0442\u0438\u0435 \u0434\u0432\u0435\u0440\u0438, \u0447\u0442\u043e \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043f\u0440\u043e\u0432\u043e\u0434\u0438\u0442\u044c \u043f\u043e\u0432\u0442\u043e\u0440\u043d\u0443\u044e \u0430\u0442\u0430\u043a\u0443, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0443\u044e \u0441 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u043e\u0439 CVE-2019-20626.\n\n\u0418\u0437 \u0430\u0440\u0441\u0435\u043d\u0430\u043b\u0430, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u043f\u043e\u0442\u0440\u0435\u0431\u043e\u0432\u0430\u043b\u0441\u044f \u0434\u043b\u044f \u0434\u043e\u043a\u0430\u0437\u0430\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0430 \u043a\u043e\u043d\u0446\u0435\u043f\u0446\u0438\u0438(PoC):\n\u2316FCCID.io\n\u2316HackRF One\n\u2316Gqrx\n\u2316GNURadio\n\u0421\u043e\u0431\u0441\u0442\u0432\u0435\u043d\u043d\u043e, \u0432\u043e\u0442 \u0438 \u0441\u0430\u043c PoC: \n\u25b6\ufe0f \u0442\u044b\u043a\n\nI couldn't ignore this CVE-2022-27254 (Mitre).\nThis vulnerability affects the 2016-2020 Honda Civic(LX, EX, EX-L, Touring, Si, Type R). The bottom line is this: the keyless access system on Civics sends the same radio frequency signal for each request to open the door, which allows for a repeat attack related to the CVE-2019-20626 problem .\nFrom the arsenal that was required for Proof of Concept(PoC):\n\u2316FCC ID.io\n\u2316HackRF One\n\u2316Gqrx\n\u2316GNURadio\nActually, here is the PoC itself:\n\u25b6\ufe0f click\n\n#cve #poc #car #hackrf", "creation_timestamp": "2022-11-03T21:45:14.000000Z"} https://vulnerability.circl.lu/sighting/16b6bf02-4009-472a-9642-67b6a3f7b2f3/export Thu, 03 Nov 2022 21:45:14 +0000 ea72b0d8-bd9a-41bd-b4a8-2903b97ed413 https://vulnerability.circl.lu/sighting/ea72b0d8-bd9a-41bd-b4a8-2903b97ed413/export {"uuid": "ea72b0d8-bd9a-41bd-b4a8-2903b97ed413", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27254", "type": "published-proof-of-concept", "source": "https://t.me/q_1xx/2271", "content": "\u0641\u064a\u062f\u064a\u0648 \u062a\u0648\u0636\u064a\u062d \u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u062b\u063a\u0631\u0629 \u0641\u064a \u0627\u0644\u0633\u064a\u0627\u0631\u0627\u062a \u0647\u0648\u0627\u0646\u062f\n\n\n \u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u062b\u063a\u0631\u0629 \u0647\u0648\u0646\u062f\u0627 \u0641\u064a \u0646\u0638\u0627\u0645 \u0647\u0648\u0646\u062f\u0627 \u0639\u0646 \u0628\u0639\u062f \u0628\u062f\u0648\u0646 \u0645\u0641\u062a\u0627\u062d (CVE-2022-27254)\n\n\u0627\u0644\u0628\u0631\u0627\u0645\u062c \u0627\u0644\u062b\u0627\u0628\u062a\u0629 \u0644\u0641\u062a\u062d \u0623\u064a \u0648\u062c\u0645\u064a\u0639 \u0645\u0646\u0627\u0641\u0630 \u0634\u062d\u0646 \u0645\u0631\u0643\u0628\u0627\u062a Tesla \u0641\u064a \u0627\u0644\u0646\u0637\u0627\u0642!\n\n\u0627\u0644\u0645\u0632\u064a\u062f \u0645\u0646 \u0627\u0644\u0645\u0646\u0634\u0648\u0631\u0627\u062a \n\nhacking yemen\nhttp://t.me/q_1xx", "creation_timestamp": "2022-11-19T15:24:57.000000Z"} {"uuid": "ea72b0d8-bd9a-41bd-b4a8-2903b97ed413", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27254", "type": "published-proof-of-concept", "source": "https://t.me/q_1xx/2271", "content": "\u0641\u064a\u062f\u064a\u0648 \u062a\u0648\u0636\u064a\u062d \u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u062b\u063a\u0631\u0629 \u0641\u064a \u0627\u0644\u0633\u064a\u0627\u0631\u0627\u062a \u0647\u0648\u0627\u0646\u062f\n\n\n \u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u062b\u063a\u0631\u0629 \u0647\u0648\u0646\u062f\u0627 \u0641\u064a \u0646\u0638\u0627\u0645 \u0647\u0648\u0646\u062f\u0627 \u0639\u0646 \u0628\u0639\u062f \u0628\u062f\u0648\u0646 \u0645\u0641\u062a\u0627\u062d (CVE-2022-27254)\n\n\u0627\u0644\u0628\u0631\u0627\u0645\u062c \u0627\u0644\u062b\u0627\u0628\u062a\u0629 \u0644\u0641\u062a\u062d \u0623\u064a \u0648\u062c\u0645\u064a\u0639 \u0645\u0646\u0627\u0641\u0630 \u0634\u062d\u0646 \u0645\u0631\u0643\u0628\u0627\u062a Tesla \u0641\u064a \u0627\u0644\u0646\u0637\u0627\u0642!\n\n\u0627\u0644\u0645\u0632\u064a\u062f \u0645\u0646 \u0627\u0644\u0645\u0646\u0634\u0648\u0631\u0627\u062a \n\nhacking yemen\nhttp://t.me/q_1xx", "creation_timestamp": "2022-11-19T15:24:57.000000Z"} https://vulnerability.circl.lu/sighting/ea72b0d8-bd9a-41bd-b4a8-2903b97ed413/export Sat, 19 Nov 2022 15:24:57 +0000 84c310b3-1850-43e8-b08f-5b6cc73d0f2b https://vulnerability.circl.lu/sighting/84c310b3-1850-43e8-b08f-5b6cc73d0f2b/export {"uuid": "84c310b3-1850-43e8-b08f-5b6cc73d0f2b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27254", "type": "published-proof-of-concept", "source": "https://t.me/Fzzee/431", "content": "\u0641\u064a\u062f\u064a\u0648 \u062a\u0648\u0636\u064a\u062d \u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u062b\u063a\u0631\u0629 \u0641\u064a \u0627\u0644\u0633\u064a\u0627\u0631\u0627\u062a \u0647\u0648\u0627\u0646\u062f\n\n\n \u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u062b\u063a\u0631\u0629 \u0647\u0648\u0646\u062f\u0627 \u0641\u064a \u0646\u0638\u0627\u0645 \u0647\u0648\u0646\u062f\u0627 \u0639\u0646 \u0628\u0639\u062f \u0628\u062f\u0648\u0646 \u0645\u0641\u062a\u0627\u062d (CVE-2022-27254)\n\n\u0627\u0644\u0628\u0631\u0627\u0645\u062c \u0627\u0644\u062b\u0627\u0628\u062a\u0629 \u0644\u0641\u062a\u062d \u0623\u064a \u0648\u062c\u0645\u064a\u0639 \u0645\u0646\u0627\u0641\u0630 \u0634\u062d\u0646 \u0645\u0631\u0643\u0628\u0627\u062a Tesla \u0641\u064a \u0627\u0644\u0646\u0637\u0627\u0642!", "creation_timestamp": "2022-12-16T17:12:27.000000Z"} {"uuid": "84c310b3-1850-43e8-b08f-5b6cc73d0f2b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27254", "type": "published-proof-of-concept", "source": "https://t.me/Fzzee/431", "content": "\u0641\u064a\u062f\u064a\u0648 \u062a\u0648\u0636\u064a\u062d \u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u062b\u063a\u0631\u0629 \u0641\u064a \u0627\u0644\u0633\u064a\u0627\u0631\u0627\u062a \u0647\u0648\u0627\u0646\u062f\n\n\n \u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u062b\u063a\u0631\u0629 \u0647\u0648\u0646\u062f\u0627 \u0641\u064a \u0646\u0638\u0627\u0645 \u0647\u0648\u0646\u062f\u0627 \u0639\u0646 \u0628\u0639\u062f \u0628\u062f\u0648\u0646 \u0645\u0641\u062a\u0627\u062d (CVE-2022-27254)\n\n\u0627\u0644\u0628\u0631\u0627\u0645\u062c \u0627\u0644\u062b\u0627\u0628\u062a\u0629 \u0644\u0641\u062a\u062d \u0623\u064a \u0648\u062c\u0645\u064a\u0639 \u0645\u0646\u0627\u0641\u0630 \u0634\u062d\u0646 \u0645\u0631\u0643\u0628\u0627\u062a Tesla \u0641\u064a \u0627\u0644\u0646\u0637\u0627\u0642!", "creation_timestamp": "2022-12-16T17:12:27.000000Z"} https://vulnerability.circl.lu/sighting/84c310b3-1850-43e8-b08f-5b6cc73d0f2b/export Fri, 16 Dec 2022 17:12:27 +0000 9a770c3b-91a9-4a98-963b-82b0d7d7dab5 https://vulnerability.circl.lu/sighting/9a770c3b-91a9-4a98-963b-82b0d7d7dab5/export {"uuid": "9a770c3b-91a9-4a98-963b-82b0d7d7dab5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27254", "type": "published-proof-of-concept", "source": "https://t.me/SpidrX/797", "content": "\u0641\u064a\u062f\u064a\u0648 \u062a\u0648\u0636\u064a\u062d \u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u062b\u063a\u0631\u0629 \u0641\u064a \u0627\u0644\u0633\u064a\u0627\u0631\u0627\u062a \u0647\u0648\u0627\u0646\u062f\n\n\n \u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u062b\u063a\u0631\u0629 \u0647\u0648\u0646\u062f\u0627 \u0641\u064a \u0646\u0638\u0627\u0645 \u0647\u0648\u0646\u062f\u0627 \u0639\u0646 \u0628\u0639\u062f \u0628\u062f\u0648\u0646 \u0645\u0641\u062a\u0627\u062d (CVE-2022-27254)\n\n\u0627\u0644\u0628\u0631\u0627\u0645\u062c \u0627\u0644\u062b\u0627\u0628\u062a\u0629 \u0644\u0641\u062a\u062d \u0623\u064a \u0648\u062c\u0645\u064a\u0639 \u0645\u0646\u0627\u0641\u0630 \u0634\u062d\u0646 \u0645\u0631\u0643\u0628\u0627\u062a Tesla \u0641\u064a \u0627\u0644\u0646\u0637\u0627\u0642!", "creation_timestamp": "2022-12-16T18:40:47.000000Z"} {"uuid": "9a770c3b-91a9-4a98-963b-82b0d7d7dab5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27254", "type": "published-proof-of-concept", "source": "https://t.me/SpidrX/797", "content": "\u0641\u064a\u062f\u064a\u0648 \u062a\u0648\u0636\u064a\u062d \u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u062b\u063a\u0631\u0629 \u0641\u064a \u0627\u0644\u0633\u064a\u0627\u0631\u0627\u062a \u0647\u0648\u0627\u0646\u062f\n\n\n \u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u062b\u063a\u0631\u0629 \u0647\u0648\u0646\u062f\u0627 \u0641\u064a \u0646\u0638\u0627\u0645 \u0647\u0648\u0646\u062f\u0627 \u0639\u0646 \u0628\u0639\u062f \u0628\u062f\u0648\u0646 \u0645\u0641\u062a\u0627\u062d (CVE-2022-27254)\n\n\u0627\u0644\u0628\u0631\u0627\u0645\u062c \u0627\u0644\u062b\u0627\u0628\u062a\u0629 \u0644\u0641\u062a\u062d \u0623\u064a \u0648\u062c\u0645\u064a\u0639 \u0645\u0646\u0627\u0641\u0630 \u0634\u062d\u0646 \u0645\u0631\u0643\u0628\u0627\u062a Tesla \u0641\u064a \u0627\u0644\u0646\u0637\u0627\u0642!", "creation_timestamp": "2022-12-16T18:40:47.000000Z"} https://vulnerability.circl.lu/sighting/9a770c3b-91a9-4a98-963b-82b0d7d7dab5/export Fri, 16 Dec 2022 18:40:47 +0000 6e8f1c0c-7e6d-414b-8cf6-7e89945b6859 https://vulnerability.circl.lu/sighting/6e8f1c0c-7e6d-414b-8cf6-7e89945b6859/export {"uuid": "6e8f1c0c-7e6d-414b-8cf6-7e89945b6859", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27254", "type": "published-proof-of-concept", "source": "Telegram/szg74Qm4n38TtnLhVXmcs_KgRO4IWiuPmQYby4jF-2nImw", "content": "", "creation_timestamp": "2022-12-16T18:40:47.000000Z"} {"uuid": "6e8f1c0c-7e6d-414b-8cf6-7e89945b6859", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27254", "type": "published-proof-of-concept", "source": "Telegram/szg74Qm4n38TtnLhVXmcs_KgRO4IWiuPmQYby4jF-2nImw", "content": "", "creation_timestamp": "2022-12-16T18:40:47.000000Z"} https://vulnerability.circl.lu/sighting/6e8f1c0c-7e6d-414b-8cf6-7e89945b6859/export Fri, 16 Dec 2022 18:40:47 +0000 bf038f66-681a-47f6-b931-5cef700634e8 https://vulnerability.circl.lu/sighting/bf038f66-681a-47f6-b931-5cef700634e8/export {"uuid": "bf038f66-681a-47f6-b931-5cef700634e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27254", "type": "published-proof-of-concept", "source": "https://t.me/WARLOCK_DARK_ARMY_OFFICIALS/1291", "content": "HackRF One + Portapack H2 Mayhem.\n\nThe HackRF is an exceptionally capable software defined radio (SDR) transceiver, but naturally you need to connect it to a computer to actually do anything with it. So the PortaPack was developed to turn it into a stand-alone device with the addition of a touchscreen LCD, a few buttons, and a headphone jack. With all the hardware in place, it\u2019s just a matter of installing a firmware capable enough to do some proper RF hacking on the go.\n\nEnter MAYHEM, an evolved fork of the original PortaPack firmware that the developers claim is the most up-to-date and feature packed version available. Without ever plugging into a computer, this firmware allows you to receive, decode, and re-transmit a dizzying number of wireless protocols. From firing off the seating pagers at a local restaurant to creating a fleet of phantom aircraft with spoofed ADS-B transponders, MAYHEM certainly seems like it lives up to the name.\n\nDetailed blog post about installing and using MAYHEM on the HackRF/PortaPack, complete with a number of real-world examples that show off just a handful of possible applications for the project. Jamming cell phones, sending fake pager messages, and cloning RF remotes is just scratching the surface of what\u2019s possible.\n\nExample of use: exploitation of a Honda vulnerability Honda's Remote Keyless System (CVE-2022-27254)\n\nFirmware to open any and all Tesla vehicle charging ports in range!\n\nBuy online: \n\ud83d\uded2 https://alii.pub/6lfodk\n\ud83d\uded2 https://amzn.to/3kRIrFF\n\n#hackrf #radio #sdr #spoofing", "creation_timestamp": "2023-01-30T22:53:50.000000Z"} {"uuid": "bf038f66-681a-47f6-b931-5cef700634e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27254", "type": "published-proof-of-concept", "source": "https://t.me/WARLOCK_DARK_ARMY_OFFICIALS/1291", "content": "HackRF One + Portapack H2 Mayhem.\n\nThe HackRF is an exceptionally capable software defined radio (SDR) transceiver, but naturally you need to connect it to a computer to actually do anything with it. So the PortaPack was developed to turn it into a stand-alone device with the addition of a touchscreen LCD, a few buttons, and a headphone jack. With all the hardware in place, it\u2019s just a matter of installing a firmware capable enough to do some proper RF hacking on the go.\n\nEnter MAYHEM, an evolved fork of the original PortaPack firmware that the developers claim is the most up-to-date and feature packed version available. Without ever plugging into a computer, this firmware allows you to receive, decode, and re-transmit a dizzying number of wireless protocols. From firing off the seating pagers at a local restaurant to creating a fleet of phantom aircraft with spoofed ADS-B transponders, MAYHEM certainly seems like it lives up to the name.\n\nDetailed blog post about installing and using MAYHEM on the HackRF/PortaPack, complete with a number of real-world examples that show off just a handful of possible applications for the project. Jamming cell phones, sending fake pager messages, and cloning RF remotes is just scratching the surface of what\u2019s possible.\n\nExample of use: exploitation of a Honda vulnerability Honda's Remote Keyless System (CVE-2022-27254)\n\nFirmware to open any and all Tesla vehicle charging ports in range!\n\nBuy online: \n\ud83d\uded2 https://alii.pub/6lfodk\n\ud83d\uded2 https://amzn.to/3kRIrFF\n\n#hackrf #radio #sdr #spoofing", "creation_timestamp": "2023-01-30T22:53:50.000000Z"} https://vulnerability.circl.lu/sighting/bf038f66-681a-47f6-b931-5cef700634e8/export Mon, 30 Jan 2023 22:53:50 +0000 45a03370-0ceb-45dc-8063-d67f0d26e653 https://vulnerability.circl.lu/sighting/45a03370-0ceb-45dc-8063-d67f0d26e653/export {"uuid": "45a03370-0ceb-45dc-8063-d67f0d26e653", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27254", "type": "published-proof-of-concept", "source": "https://t.me/PentestingShop/285", "content": "\u200b\u200bHackRF One + Portapack H2 Mayhem\n\nThe HackRF is an exceptionally capable software defined radio (SDR) transceiver, but naturally you need to connect it to a computer to actually do anything with it. So the PortaPack was developed to turn it into a stand-alone device with the addition of a touchscreen LCD, a few buttons, and a headphone jack. With all the hardware in place, it\u2019s just a matter of installing a firmware capable enough to do some proper RF hacking on the go.\n\nEnter MAYHEM, an evolved fork of the original PortaPack firmware that the developers claim is the most up-to-date and feature packed version available. Without ever plugging into a computer, this firmware allows you to receive, decode, and re-transmit a dizzying number of wireless protocols. From firing off the seating pagers at a local restaurant to creating a fleet of phantom aircraft with spoofed ADS-B transponders, MAYHEM certainly seems like it lives up to the name.\n\nDetailed blog post about installing and using MAYHEM on the HackRF/PortaPack, complete with a number of real-world examples that show off just a handful of possible applications for the project. Jamming cell phones, sending fake pager messages, and cloning RF remotes is just scratching the surface of what\u2019s possible.\n\nExample of use: exploitation of a Honda vulnerability Honda's Remote Keyless System (CVE-2022-27254)\n\nFirmware to open any and all Tesla vehicle charging ports in range!\n\nBuy online: \n\ud83d\uded2 https://bit.ly/41HS7D3\n\n#radio #RF #SDR", "creation_timestamp": "2023-04-30T17:52:58.000000Z"} {"uuid": "45a03370-0ceb-45dc-8063-d67f0d26e653", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27254", "type": "published-proof-of-concept", "source": "https://t.me/PentestingShop/285", "content": "\u200b\u200bHackRF One + Portapack H2 Mayhem\n\nThe HackRF is an exceptionally capable software defined radio (SDR) transceiver, but naturally you need to connect it to a computer to actually do anything with it. So the PortaPack was developed to turn it into a stand-alone device with the addition of a touchscreen LCD, a few buttons, and a headphone jack. With all the hardware in place, it\u2019s just a matter of installing a firmware capable enough to do some proper RF hacking on the go.\n\nEnter MAYHEM, an evolved fork of the original PortaPack firmware that the developers claim is the most up-to-date and feature packed version available. Without ever plugging into a computer, this firmware allows you to receive, decode, and re-transmit a dizzying number of wireless protocols. From firing off the seating pagers at a local restaurant to creating a fleet of phantom aircraft with spoofed ADS-B transponders, MAYHEM certainly seems like it lives up to the name.\n\nDetailed blog post about installing and using MAYHEM on the HackRF/PortaPack, complete with a number of real-world examples that show off just a handful of possible applications for the project. Jamming cell phones, sending fake pager messages, and cloning RF remotes is just scratching the surface of what\u2019s possible.\n\nExample of use: exploitation of a Honda vulnerability Honda's Remote Keyless System (CVE-2022-27254)\n\nFirmware to open any and all Tesla vehicle charging ports in range!\n\nBuy online: \n\ud83d\uded2 https://bit.ly/41HS7D3\n\n#radio #RF #SDR", "creation_timestamp": "2023-04-30T17:52:58.000000Z"} https://vulnerability.circl.lu/sighting/45a03370-0ceb-45dc-8063-d67f0d26e653/export Sun, 30 Apr 2023 17:52:58 +0000 99385ef0-6ed6-4b1f-bf17-d2cdd3d72b8a https://vulnerability.circl.lu/sighting/99385ef0-6ed6-4b1f-bf17-d2cdd3d72b8a/export {"uuid": "99385ef0-6ed6-4b1f-bf17-d2cdd3d72b8a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27254", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/161", "content": "https://github.com/nonamecoder/CVE-2022-27254\n\n\u672c\u7530\u8fdc\u7a0b\u65e0\u94a5\u5319\u7cfb\u7edf\u6f0f\u6d1e\u7684PoC\u2026\u2026", "creation_timestamp": "2023-06-06T05:02:13.000000Z"} {"uuid": "99385ef0-6ed6-4b1f-bf17-d2cdd3d72b8a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27254", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/161", "content": "https://github.com/nonamecoder/CVE-2022-27254\n\n\u672c\u7530\u8fdc\u7a0b\u65e0\u94a5\u5319\u7cfb\u7edf\u6f0f\u6d1e\u7684PoC\u2026\u2026", "creation_timestamp": "2023-06-06T05:02:13.000000Z"} https://vulnerability.circl.lu/sighting/99385ef0-6ed6-4b1f-bf17-d2cdd3d72b8a/export Tue, 06 Jun 2023 05:02:13 +0000 e8b425e0-bef9-4230-8916-99abe348661f https://vulnerability.circl.lu/sighting/e8b425e0-bef9-4230-8916-99abe348661f/export {"uuid": "e8b425e0-bef9-4230-8916-99abe348661f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27254", "type": "published-proof-of-concept", "source": "https://t.me/poxek/1923", "content": "\u041d\u0435 \u043c\u043e\u0433 \u043e\u0431\u043e\u0439\u0442\u0438 \u0441\u0442\u043e\u0440\u043e\u043d\u043e\u0439 \u044d\u0442\u0443 CVE-2022-27254(Mitre).\n\u042d\u0442\u0430 CVE \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 Honda Civic(LX, EX, EX-L, Touring, Si, Type R) 2016-2020 \u0433\u043e\u0434\u043e\u0432 \u0432\u044b\u043f\u0443\u0441\u043a\u0430. \u0421\u0443\u0442\u044c \u0432 \u0447\u0451\u043c: \u0441\u0438\u0441\u0442\u0435\u043c\u0430 \u0431\u0435\u0441\u043a\u043b\u044e\u0447\u0435\u0432\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043d\u0430 \u0441\u0438\u0432\u0438\u043a\u0430\u0445 \u043f\u043e\u0441\u044b\u043b\u0430\u0435\u0442 \u043e\u0434\u0438\u043d \u0438 \u0442\u043e\u0442 \u0436\u0435 \u0440\u0430\u0434\u0438\u043e\u0447\u0430\u0441\u0442\u043e\u0442\u043d\u044b\u0439 \u0441\u0438\u0433\u043d\u0430\u043b \u0434\u043b\u044f \u043a\u0430\u0436\u0434\u043e\u0433\u043e \u0437\u0430\u043f\u0440\u043e\u0441\u0430 \u043d\u0430 \u043e\u0442\u043a\u0440\u044b\u0442\u0438\u0435 \u0434\u0432\u0435\u0440\u0438, \u0447\u0442\u043e \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043f\u0440\u043e\u0432\u043e\u0434\u0438\u0442\u044c \u043f\u043e\u0432\u0442\u043e\u0440\u043d\u0443\u044e \u0430\u0442\u0430\u043a\u0443, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0443\u044e \u0441 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u043e\u0439 CVE-2019-20626.\n\n\u0418\u0437 \u0430\u0440\u0441\u0435\u043d\u0430\u043b\u0430, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u043f\u043e\u0442\u0440\u0435\u0431\u043e\u0432\u0430\u043b\u0441\u044f \u0434\u043b\u044f \u0434\u043e\u043a\u0430\u0437\u0430\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0430 \u043a\u043e\u043d\u0446\u0435\u043f\u0446\u0438\u0438(PoC):\n\u2316FCCID.io\n\u2316HackRF One\n\u2316Gqrx\n\u2316GNURadio\n\u0421\u043e\u0431\u0441\u0442\u0432\u0435\u043d\u043d\u043e, \u0432\u043e\u0442 \u0438 \u0441\u0430\u043c PoC: \n\u25b6\ufe0f \u0442\u044b\u043a(github)\n\nI couldn't ignore this CVE-2022-27254 (Mitre).\nThis CVE affects the 2016-2020 Honda Civic(LX, EX, EX-L, Touring, Si, Type R). The bottom line is this: the keyless access system on Civics sends the same radio frequency signal for each request to open the door, which allows for a repeat attack related to the CVE-2019-20626 problem .\nFrom the arsenal that was required for Proof of Concept(PoC):\n\u2316FCC ID.io\n\u2316HackRF One\n\u2316Gqrx\n\u2316GNURadio\nActually, here is the PoC itself:\n\u25b6\ufe0f click(github)\n\n#cve #poc #car #hackrf", "creation_timestamp": "2024-11-06T19:30:33.000000Z"} {"uuid": "e8b425e0-bef9-4230-8916-99abe348661f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27254", "type": "published-proof-of-concept", "source": "https://t.me/poxek/1923", "content": "\u041d\u0435 \u043c\u043e\u0433 \u043e\u0431\u043e\u0439\u0442\u0438 \u0441\u0442\u043e\u0440\u043e\u043d\u043e\u0439 \u044d\u0442\u0443 CVE-2022-27254(Mitre).\n\u042d\u0442\u0430 CVE \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 Honda Civic(LX, EX, EX-L, Touring, Si, Type R) 2016-2020 \u0433\u043e\u0434\u043e\u0432 \u0432\u044b\u043f\u0443\u0441\u043a\u0430. \u0421\u0443\u0442\u044c \u0432 \u0447\u0451\u043c: \u0441\u0438\u0441\u0442\u0435\u043c\u0430 \u0431\u0435\u0441\u043a\u043b\u044e\u0447\u0435\u0432\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043d\u0430 \u0441\u0438\u0432\u0438\u043a\u0430\u0445 \u043f\u043e\u0441\u044b\u043b\u0430\u0435\u0442 \u043e\u0434\u0438\u043d \u0438 \u0442\u043e\u0442 \u0436\u0435 \u0440\u0430\u0434\u0438\u043e\u0447\u0430\u0441\u0442\u043e\u0442\u043d\u044b\u0439 \u0441\u0438\u0433\u043d\u0430\u043b \u0434\u043b\u044f \u043a\u0430\u0436\u0434\u043e\u0433\u043e \u0437\u0430\u043f\u0440\u043e\u0441\u0430 \u043d\u0430 \u043e\u0442\u043a\u0440\u044b\u0442\u0438\u0435 \u0434\u0432\u0435\u0440\u0438, \u0447\u0442\u043e \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043f\u0440\u043e\u0432\u043e\u0434\u0438\u0442\u044c \u043f\u043e\u0432\u0442\u043e\u0440\u043d\u0443\u044e \u0430\u0442\u0430\u043a\u0443, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0443\u044e \u0441 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u043e\u0439 CVE-2019-20626.\n\n\u0418\u0437 \u0430\u0440\u0441\u0435\u043d\u0430\u043b\u0430, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u043f\u043e\u0442\u0440\u0435\u0431\u043e\u0432\u0430\u043b\u0441\u044f \u0434\u043b\u044f \u0434\u043e\u043a\u0430\u0437\u0430\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0430 \u043a\u043e\u043d\u0446\u0435\u043f\u0446\u0438\u0438(PoC):\n\u2316FCCID.io\n\u2316HackRF One\n\u2316Gqrx\n\u2316GNURadio\n\u0421\u043e\u0431\u0441\u0442\u0432\u0435\u043d\u043d\u043e, \u0432\u043e\u0442 \u0438 \u0441\u0430\u043c PoC: \n\u25b6\ufe0f \u0442\u044b\u043a(github)\n\nI couldn't ignore this CVE-2022-27254 (Mitre).\nThis CVE affects the 2016-2020 Honda Civic(LX, EX, EX-L, Touring, Si, Type R). The bottom line is this: the keyless access system on Civics sends the same radio frequency signal for each request to open the door, which allows for a repeat attack related to the CVE-2019-20626 problem .\nFrom the arsenal that was required for Proof of Concept(PoC):\n\u2316FCC ID.io\n\u2316HackRF One\n\u2316Gqrx\n\u2316GNURadio\nActually, here is the PoC itself:\n\u25b6\ufe0f click(github)\n\n#cve #poc #car #hackrf", "creation_timestamp": "2024-11-06T19:30:33.000000Z"} https://vulnerability.circl.lu/sighting/e8b425e0-bef9-4230-8916-99abe348661f/export Wed, 06 Nov 2024 19:30:33 +0000 bc847fe1-efcf-439a-aeed-8d309fee20d1 https://vulnerability.circl.lu/sighting/bc847fe1-efcf-439a-aeed-8d309fee20d1/export {"uuid": "bc847fe1-efcf-439a-aeed-8d309fee20d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27254", "type": "published-proof-of-concept", "source": "https://t.me/q_1xx/4651", "content": "\u0641\u064a\u062f\u064a\u0648 \u062a\u0648\u0636\u064a\u062d \u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u062b\u063a\u0631\u0629 \u0641\u064a \u0627\u0644\u0633\u064a\u0627\u0631\u0627\u062a \u0647\u0648\u0627\u0646\u062f\n\n\n \u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u062b\u063a\u0631\u0629 \u0647\u0648\u0646\u062f\u0627 \u0641\u064a \u0646\u0638\u0627\u0645 \u0647\u0648\u0646\u062f\u0627 \u0639\u0646 \u0628\u0639\u062f \u0628\u062f\u0648\u0646 \u0645\u0641\u062a\u0627\u062d (CVE-2022-27254)\n\n\u0627\u0644\u0628\u0631\u0627\u0645\u062c \u0627\u0644\u062b\u0627\u0628\u062a\u0629 \u0644\u0641\u062a\u062d \u0623\u064a \u0648\u062c\u0645\u064a\u0639 \u0645\u0646\u0627\u0641\u0630 \u0634\u062d\u0646 \u0645\u0631\u0643\u0628\u0627\u062a Tesla \u0641\u064a \u0627\u0644\u0646\u0637\u0627\u0642!\n\n\u0627\u0644\u0645\u0632\u064a\u062f \u0645\u0646 \u0627\u0644\u0645\u0646\u0634\u0648\u0631\u0627\u062a \n\nhacking yemen\nhttp://t.me/q_1xx", "creation_timestamp": "2025-06-29T08:31:42.000000Z"} {"uuid": "bc847fe1-efcf-439a-aeed-8d309fee20d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27254", "type": "published-proof-of-concept", "source": "https://t.me/q_1xx/4651", "content": "\u0641\u064a\u062f\u064a\u0648 \u062a\u0648\u0636\u064a\u062d \u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u062b\u063a\u0631\u0629 \u0641\u064a \u0627\u0644\u0633\u064a\u0627\u0631\u0627\u062a \u0647\u0648\u0627\u0646\u062f\n\n\n \u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u062b\u063a\u0631\u0629 \u0647\u0648\u0646\u062f\u0627 \u0641\u064a \u0646\u0638\u0627\u0645 \u0647\u0648\u0646\u062f\u0627 \u0639\u0646 \u0628\u0639\u062f \u0628\u062f\u0648\u0646 \u0645\u0641\u062a\u0627\u062d (CVE-2022-27254)\n\n\u0627\u0644\u0628\u0631\u0627\u0645\u062c \u0627\u0644\u062b\u0627\u0628\u062a\u0629 \u0644\u0641\u062a\u062d \u0623\u064a \u0648\u062c\u0645\u064a\u0639 \u0645\u0646\u0627\u0641\u0630 \u0634\u062d\u0646 \u0645\u0631\u0643\u0628\u0627\u062a Tesla \u0641\u064a \u0627\u0644\u0646\u0637\u0627\u0642!\n\n\u0627\u0644\u0645\u0632\u064a\u062f \u0645\u0646 \u0627\u0644\u0645\u0646\u0634\u0648\u0631\u0627\u062a \n\nhacking yemen\nhttp://t.me/q_1xx", "creation_timestamp": "2025-06-29T08:31:42.000000Z"} https://vulnerability.circl.lu/sighting/bc847fe1-efcf-439a-aeed-8d309fee20d1/export Sun, 29 Jun 2025 08:31:42 +0000