Researchers from Technical University (TU) Berlin have uncovered a vulnerability in AMD-based vehicle infotainment systems that could potentially allow attackers to unlock restricted vehicle features. This vulnerability is most notable in vehicles that offer premium features behind a paywall, including Tesla, which has a comprehensive system of this nature.
The research team identified two distinct concerns related to this vulnerability. First, they discovered an “unpatchable AMD-based Tesla Jailbreak” that enables an attacker to run arbitrary software on the in-car display. Second, they found a way to extract a vehicle-unique hardware-bound RSA key, which could allow an attacker to authenticate a car and access Tesla’s services.
The vulnerability was exploited using a voltage fault injection attack on the AMD Ryzen SoC used in Tesla’s MCU-Z.
While it’s unclear which chargeable options can be accessed through this vulnerability, the researchers noted that not all software upgrades are accessible. Depending on the Tesla model and year, upgrades may include features like heated rear seats, acceleration boosts, and full self-driving capabilities.
As of now, Tesla has not publicly commented on this vulnerability, as the company dissolved its press department in 2020. Consequently, it may be challenging to obtain an official response from the automaker.
