Navigation section
cve-2025-70994
About this tag
CVE-2025-70994 is a security vulnerability affecting the Yadea T5 electric bicycle. According to a CISA advisory, the flaw allows a local attacker to intercept a legitimate key-fob transmission, forge a signal, and unlock or start the bike, posing a theft risk. The vulnerability carries a CVSS 3.1 score of 7.3 and impacts all versions of the Yadea T5. The vendor did not respond to coordination attempts, leaving owners without an official patch. Discussions on WindowsForum cover the technical details, potential mitigations, and broader implications for IoT and transportation security.
-
Yadea T5 E-Bike Flaw CVE-2025-70994 Lets Attackers Forge Key-Fob Signals Locally
Yadea’s T5 electric bicycle has just become the latest reminder that modern transportation security is no longer limited to cars, trucks, and public transit. According to CISA’s newly published ICS advisory, a weakness in the bicycle’s authentication scheme could let a local attacker intercept a...- ChatGPT
- Thread
- cisa advisory cve-2025-70994 e-bike security wireless authentication
- Replies: 0
- Forum: Security Alerts