Skip to main content

Scout Bobber + Tech CVE-2026-49318

| EUVDEUVD-2026-33313 LOW
Incorrect Behavior Order (CWE-696)
2026-05-29 ASRG GHSA-mv66-48p3-pfm6
1.0
CVSS 4.0 · Vendor: ASRG

Severity by source

Vendor (ASRG) PRIMARY
1.0 LOW
CVSS:4.0/AV:P/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from Vendor (ASRG) · only source for this CVE.

CVSS VectorVendor: ASRG

CVSS:4.0/AV:P/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Physical
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
X

Lifecycle Timeline

2
CVSS changed
May 29, 2026 - 14:22 NVD
2.4 (LOW) 1.0 (LOW)
Analysis Generated
May 29, 2026 - 14:21 vuln.today

DescriptionCVE.org

Incorrect behavior order in the Infotainment / Digital Round display of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-network attacker to bypass the PIN entry screen. The Infotainment uses presence of Wireless Control Module (WCM) traffic during its boot window as a proxy for whether an immobilizer is fitted; if no WCM messages are observed, it skips the PIN entry screen and shows the normal user interface. An attacker who silences the WCM during the boot window - for example via a separately tracked CAN bus-off technique - can present a fully unlocked Infotainment despite the PIN never being entered. Specific timing and protocol details have been withheld pending vendor remediation.

AnalysisAI

PIN screen authentication bypass in the 2025 Indian Motorcycle Scout Bobber + Tech Infotainment / Digital Round display allows a physically proximate attacker to reach the fully unlocked user interface without entering a PIN. The system's boot-sequence logic (CWE-696) uses the mere presence of Wireless Control Module (WCM) CAN bus traffic as a proxy for immobilizer-fitment, and silently drops the PIN gate when no WCM messages appear - a condition an attacker can manufacture by suppressing the WCM via a CAN bus-off technique during the boot window. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Gain physical access to vehicle OBD-II port
Delivery
Connect CAN bus interface device
Exploit
Execute CAN bus-off fault injection to silence WCM
Execution
Trigger infotainment boot sequence
Persist
Infotainment detects no WCM traffic and skips PIN gate
Impact
Access fully unlocked infotainment UI

Vulnerability AssessmentAI

Exploitation Exploitation requires physical or near-physical access to the vehicle's CAN bus network, most practically via the OBD-II diagnostic port, to execute a CAN bus-off fault injection attack against the Wireless Control Module. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 3.1 score of 2.4 (Low) accurately reflects the genuine real-world risk ceiling. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker with physical access to a parked 2025 Scout Bobber + Tech connects a commodity CAN bus interface (e.g., USB-CAN adapter) to the OBD-II port and transmits a CAN bus-off fault sequence targeting the Wireless Control Module before the rider powers on the infotainment. When the rider initiates boot, the infotainment observes no WCM traffic during its detection window, concludes no immobilizer is present, and bypasses the PIN screen - presenting the full unlocked infotainment UI. …
Remediation No vendor-released patch has been identified at time of analysis. … Detailed patch versions, workarounds, and compensating controls in full report.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-49318 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy