Micca KE700 System Has Weak Rolling Code Authentication

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

6.4

Micca KE700 System Has Weak Rolling Code Authentication

CVE-2026-2541

Summary

The Micca KE700 system's weak password system makes it easy for an attacker to guess the code and unlock a vehicle. This is because the system only uses 64 possible combinations, making it a simple task to try each one. To fix this, update the system to use a more secure method of authentication.

Original title

Original description

The Micca KE700 system relies on a 6-bit portion of an identifier for authentication within rolling codes, providing only 64 possible combinations. This low entropy allows an attacker to perform a brute-force attack against one component of the rolling code. Successful exploitation simplify an attacker to predict the next valid rolling code, granting unauthorized access to the vehicle.

nvd CVSS4.0 6.4

Vulnerability type

CWE-331

https://asrg.io/security-advisories/cve-2026-2541/

Published: 15 Feb 2026 · Updated: 12 Mar 2026 · First seen: 6 Mar 2026