NHTSAEQUIPMENT
IOSiX - Software Security Vulnerability in IO-1020 Dongle
Published: September 18, 2024Recall ID: 24E077000Category: vehiclesCountry: US
Reason for Recall / Hazard
Exploitation of the software vulnerability may result in an engine stall, increasing the risk of a crash.
Product Description & Identification
IOSiX is recalling certain 2017-2024 IO-1020 micro device dongles. A software vulnerability may allow third-party firmware to be uploaded to the dongle or access to the primary vehicle databus.
Affected Products
Software Security Vulnerability in IO-1020 Dongle
Additional Source Details
| Field | Value |
|---|---|
| Subject | Software Security Vulnerability in IO-1020 Dongle |
| Nhtsa id | 24E077000 |
| Component | EQUIPMENT |
| Recall link › Url | https://www.nhtsa.gov/recalls?nhtsaId=24E077000 |
| Recall link › Description | Go to Recall |
| Recall type | Equipment |
| Do not drive | No |
| Manufacturer | IOSiX |
| Defect summary | IOSiX is recalling certain 2017-2024 IO-1020 micro device dongles. A software vulnerability may allow third-party firmware to be uploaded to the dongle or access to the primary vehicle databus. |
| Completion rate | 40.57 |
| Corrective action | IOSiX has released an over-the-air (OTA) software update, free of charge. Owner notification letters were mailed November 15, 2024. Owners may contact IOSiX customer service at 1-855-623-1939. |
| Consequence summary | Exploitation of the software vulnerability may result in an engine stall, increasing the risk of a crash. |
| Mfr campaign number | NR (Not Reported) |
| Potentially affected | 140000 |
| Report received date | 2024-09-18T00:00:00.000 |
| Fire risk when parked | No |