Close Menu

    Subscribe to Updates

    Get the latest creative news from FooBar about art, design and business.

    What's Hot

    Dutch police bust investment fraud ring stealing over €100 million

    July 15, 2026

    Hack Reveals Suno AI Music Generator Scraped YouTube, Deezer, and Genius

    July 15, 2026

    Podcast: We Are Living in a ‘ChatGPT Flyer Pandemic’

    July 15, 2026
    Facebook X (Twitter) Instagram
    • Demos
    • Technology
    • Gaming
    • Buy Now
    Facebook X (Twitter) Instagram Pinterest Vimeo
    Canadian Cyber WatchCanadian Cyber Watch
    • Home
    • News
    • Alerts
    • Tips
    • Tools
    • Industry
    • Incidents
    • Events
    • Education
    Subscribe
    Canadian Cyber WatchCanadian Cyber Watch
    Home»Alerts»Yadea T5 Electric Bicycle | CISA
    Alerts

    Yadea T5 Electric Bicycle | CISA

    adminBy adminApril 24, 2026No Comments2 Mins Read
    Share Facebook Twitter Pinterest LinkedIn Tumblr Reddit Telegram Email
    Share
    Facebook Twitter LinkedIn Pinterest Email


    View CSAF

    Summary

    Successful exploitation of this vulnerability could result in an attacker being able to unlock and start the bicycle, leading to vehicle theft.

    The following versions of Yadea T5 Electric Bicycle are affected:

    • T5 Electric Bicycle vers:all/* (CVE-2025-70994)
    CVSS Vendor Equipment Vulnerabilities
    v3 7.3 Yadea Yadea T5 Electric Bicycle Weak Authentication

    Background

    • Critical Infrastructure Sectors: Transportation Systems
    • Countries/Areas Deployed: Worldwide
    • Company Headquarters Location: China

    Vulnerabilities

    Expand All +

    CVE-2025-70994

    Yadea T5 Electric Bicycles have a weak authentication mechanism which is vulnerable to signal forgery after a local attacker intercepts any legitimate key fob transmissions.

    View CVE Details


    Affected Products

    Yadea T5 Electric Bicycle

    Vendor:
    Yadea

    Product Version:
    Yadea T5 Electric Bicycle: vers:all/*

    Product Status:
    known_affected

    Relevant CWE: CWE-1390 Weak Authentication


    Metrics


    Acknowledgments

    • Ashen Chathuranga reported this vulnerability to MITRE and CISA

    Legal Notice and Terms of Use

    This product is provided subject to this Notification (https://www.cisa.gov/notification) and this Privacy & Use policy (https://www.cisa.gov/privacy-policy).


    Recommended Practices

    CISA provides a section for control systems security recommended practices on the ICS webpage on cisa.gov/ics. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.

    CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets.

    Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov/ics in the technical information paper, ICS-TIP-12-146-01B–Targeted Cyber Intrusion Detection and Mitigation Strategies.

    Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.

    No known public exploitation specifically targeting this vulnerability has been reported to CISA at this time. This vulnerability is not exploitable remotely.


    Revision History

    • Initial Release Date: 2026-04-23
    Date Revision Summary
    2026-04-23 1 Initial Publication

    Legal Notice and Terms of Use



    Source link

    Share. Facebook Twitter Pinterest LinkedIn Tumblr Email
    Previous ArticleHow Algorithms Make Us Feel Bad and Weird
    Next Article PSIRT | FortiGuard Labs
    admin
    • Website

    Related Posts

    Alerts

    CISA Adds One Known Exploited Vulnerability to Catalog

    June 12, 2026
    Alerts

    FreePBX security advisory (AV26–596) – Canadian Centre for Cyber Security

    June 12, 2026
    Alerts

    SSA-879734 V1.0: Multiple Vulnerabilities in SCALANCE XM-400/XR-500 before V6.6.1

    June 12, 2026
    Add A Comment

    Comments are closed.

    Demo
    Top Posts

    Catchy & Intriguing

    March 17, 202677 Views

    The Canadian Password Playbook: Navigating Compliance and Building Strong Passwords

    March 25, 202634 Views

    IP Address Investigations and Local OSINT

    March 20, 202634 Views
    Stay In Touch
    • Facebook
    • YouTube
    • TikTok
    • WhatsApp
    • Twitter
    • Instagram
    Latest Reviews
    85
    Featured

    Pico 4 Review: Should You Actually Buy One Instead Of Quest 2?

    January 15, 2021 Featured
    8.1
    Uncategorized

    A Review of the Venus Optics Argus 18mm f/0.95 MFT APO Lens

    January 15, 2021 Uncategorized
    8.9
    Editor's Picks

    DJI Avata Review: Immersive FPV Flying For Drone Enthusiasts

    January 15, 2021 Editor's Picks

    Subscribe to Updates

    Get the latest tech news from FooBar about tech, design and biz.

    Demo
    Most Popular

    Catchy & Intriguing

    March 17, 202677 Views

    The Canadian Password Playbook: Navigating Compliance and Building Strong Passwords

    March 25, 202634 Views

    IP Address Investigations and Local OSINT

    March 20, 202634 Views
    Our Picks

    Dutch police bust investment fraud ring stealing over €100 million

    July 15, 2026

    Hack Reveals Suno AI Music Generator Scraped YouTube, Deezer, and Genius

    July 15, 2026

    Podcast: We Are Living in a ‘ChatGPT Flyer Pandemic’

    July 15, 2026

    Subscribe to Updates

    Get the latest creative news from FooBar about art, design and business.

    Facebook X (Twitter) Instagram Pinterest
    • Home
    • Technology
    • Gaming
    • Phones
    • Buy Now
    © 2026 ThemeSphere. Designed by ThemeSphere.

    Type above and press Enter to search. Press Esc to cancel.