What is CVE-2026-49319?

CVE-2026-49319 is a medium-severity vulnerability in Alps Electric Co., Ltd. Remote Keyless Entry System (Rkes) R53r0, classified under Authentication Bypass by Capture-replay. CVSS score: 6.5/10. Published 2026-06-25.

How severe is CVE-2026-49319?

Medium severity. CVSS v3 base score is 6.5 out of 10.

Vulnerability in Alps Electric Co., Ltd. Remote Keyless Entry System (Rkes) R53r0

CVE-2026-49319

Remote Keyless Entry System (RKES), using the 433 MHz key fob bearing FCC ID CWTR53R0 manufactured by ALPS ALPINE CO., LTD., is vulnerable to a roll-back attack against its rolling-code authentication. An attacker within RF range who r…

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N.

Affected products

Alps Electric Co., Ltd. Remote Keyless Entry System (Rkes) R53r0 — versions R53R0

Weakness classification (CWE)

CWE-294 — Authentication Bypass by Capture-replay

References

cve@asrg.io (product)

Frequently asked questions

What is CVE-2026-49319?: CVE-2026-49319 is a medium-severity vulnerability in Alps Electric Co., Ltd. Remote Keyless Entry System (Rkes) R53r0, classified under Authentication Bypass by Capture-replay. CVSS score: 6.5/10. Published 2026-06-25.
How severe is CVE-2026-49319?: Medium severity. CVSS v3 base score is 6.5 out of 10.