Tesla paid $10,000 a researcher that found a stored cross-site scripting (XSS) vulnerability that could have been exploited to change vehicle information.
The security researcher Sam Curry has earned $10,000 from Tesla after reporting a stored
Curry discovered the issue in the software on his Tesla Model 3. He used the XSS Hunter tool to insert a payload in the “Name Your Vehicle” field in the infotainment system.
The XSS Hunter works by hosting specialized XSS probes which, upon firing, scan the page and send information about the vulnerable page to the XSS Hunter service.
Curiously Carry discovered the XSS issue months later when he used the mobile app to contact Tesla support after his windshield was cracked by a rock.
He was setting up an appointment when he noticed from the XSS Hunter panel that the flaw was triggered. He discovered that some information about the vehicle was collected from a page of Tesla application that was used to see the vital statistics of the car.
The exposed information included the vehicle’s VIN, speed, temperature, version number, whether it was locked or not, tire pressure, and alerts. The data also included other firmware info such as
“The thing that was very interesting was that live support agents have the capability to send updates out
“If I were an attacker attempting to compromise this I’d probably have to submit a few support
The researcher reported the flaw to Tesla that acknowledged it and addressed it is only 12 hours. Below the timeline of the flaw:
- 20 Jun 2019 06:27:30 UTC – Reported
- 20 Jun 2019 20:35:35 UTC – Triaged, hot fix
- 11 Jul 2019 16:07:59 UTC – Bounty and resolution
Curry was awarded $10,000 for reporting the flaw to Tesla.
“Looking back, this was a very simple
| [adrotate banner=”9″] | [adrotate banner=”12″] |
(
[adrotate banner=”5″]
[adrotate banner=”13″]
Share On
