Vulnerability Database

309,540

Total vulnerabilities in the database

CVE-2024-6029

Tesla Model S Iris Modem Race Condition Firewall Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass the firewall on the Iris modem in affected Tesla Model S vehicles. Authentication is not required to exploit this vulnerability.

The specific flaw exists within the firewall service. The issue results from a failure to obtain the xtables lock. An attacker can leverage this vulnerability to bypass firewall rules. Was ZDI-CAN-23197.

Published: Apr 30, 2025
Updated: Nov 16, 2025
CVE: CVE-2024-6029
Exploit:

No technical information available.

CWEs:

CWE-367

Affected Software
References

Software	From	Fixed in
tesla / model_s_firmware	-	2024.2.3

https://www.zerodayinitiative.com/advisories/ZDI-25-260/

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo