What is CVE-2026-49318?

CVE-2026-49318 is a low-severity vulnerability in Indian Motorcycle (Polaris Inc.) Scout Bobber + Tech, classified under CWE-636. CVSS score: 2.4/10. Published 2026-05-29.

How severe is CVE-2026-49318?

Low severity. CVSS v3 base score is 2.4 out of 10.

Vulnerability in Indian Motorcycle (Polaris Inc.) Scout Bobber + Tech

CVE-2026-49318

Incorrect behavior order in the Infotainment / Digital Round display of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-network attacker to bypass the PIN entry screen. The Infotainment uses presence of Wireles…

EPSS: 0.000 (5.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 2.4 (Low). Vector: CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N.

Affected products

Indian Motorcycle (Polaris Inc.) Scout Bobber + Tech — versions 2025

Weakness classification (CWE)

CWE-636
CWE-696
CWE-754 — Improper Check for Unusual or Exceptional Conditions

References

cve@asrg.io (technical-description)

Frequently asked questions

What is CVE-2026-49318?: CVE-2026-49318 is a low-severity vulnerability in Indian Motorcycle (Polaris Inc.) Scout Bobber + Tech, classified under CWE-636. CVSS score: 2.4/10. Published 2026-05-29.
How severe is CVE-2026-49318?: Low severity. CVSS v3 base score is 2.4 out of 10.