CVE-2026-31546: Yadea T5 Electric Bicycle

CVSSawaiting NVD

ExploitationNo exploitation reported

Triage statusUnder Review

ActionSchedule for next cycle

Affected product

Yadea T5 Electric Bicycle

Remediation Steps

Contact Yadea for firmware updates addressing vehicle unlock/start vulnerability
Implement additional physical security measures (u-lock, GPS tracking)
Monitor firmware version across fleet via Yadea mobile application
Advise users to park bicycles in secure, monitored locations
Request vendor security advisory with timeline for patched firmware release

References

https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-113-01.json
https://www.yadea.com
https://nvd.nist.gov/vuln/detail/CVE-2026-31546

Coverage on defend.network

Vulnerability Priority Report – Week 4 of April 2026 (April 27 – May 3)

🤖 This CVE page is generated by defend.network from NVD, CISA KEV, EPSS, and our verified daily briefings. Severity and exploitation data come from official sources; always verify remediation steps against the official vendor advisory before acting in production.

Affected product

Remediation Steps

References

Coverage on defend.network

Get Critical CVE Alerts