Vulnerability in Kia Aftermarket Generic Smart Keyless Entry System
CVE-2025-6029
Use of fixed learning codes, one code to lock the car and the other code to unlock it, the Key Fob Transmitter in KIA-branded Aftermarket Generic Smart Keyless Entry System, primarily distributed in Ecuador, which allows a replay attack. …
EPSS: 0.006 (46.1th percentile) — read the EPSS interpretation.
Affected products
- Kia Aftermarket Generic Smart Keyless Entry System — versions KIA Ecuador Key Fobs version 2022/2023
Weakness classification (CWE)
Public proof-of-concept exploits
References
- cve@asrg.io (related)
- cve@asrg.io (third-party-advisory)
Frequently asked questions
- What is CVE-2025-6029?
- CVE-2025-6029 is a vulnerability in Kia Aftermarket Generic Smart Keyless Entry System, classified under Authentication Bypass by Capture-replay. Published 2025-06-13.
- Is CVE-2025-6029 known to be exploited?
- 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.