HIGH
Yadea
CVE published 2026-04-23
CVE-2025-70994
CVE-2025-70994 covers a weak authentication issue in Yadea T5 Electric Bicycles. According to CISA, a local attacker who intercepts a legitimate key fob transmission may be able to forge signals and defeat the authentication mechanism. The advisory is framed as a physical-security risk with high integrity and availability impact, not as a remote software vulnerability.