Yadea T5 Electric Bicycle

MonitorCVSS 7.3ICS-CERT ICSA-26-113-01Apr 23, 2026

Energy

Attack path

Attack VectorAdjacent

Auth RequiredNone

ComplexityLow

User InteractionRequired

Summary

A vulnerability in the Yadea T5 Electric Bicycle locking and starting mechanism allows an attacker within wireless range to unlock and start the bicycle without authorization, resulting in potential vehicle theft. The vulnerability affects all versions of the T5 Electric Bicycle. Yadea did not respond to CISA coordination attempts and has not released a patch. The vendor recommends users keep systems up to date and use external locking mechanisms as a compensating control.

What this means

What could happen

An attacker within wireless range could unlock and start a Yadea T5 Electric Bicycle without authorization, resulting in theft of the vehicle.

Who's at risk

Organizations and individuals operating Yadea T5 Electric Bicycles for fleet operations, employee commute programs, or personal use should be aware of this vulnerability. This affects any municipality, delivery service, or business using these bicycles for transportation.

How it could be exploited

An attacker with wireless access to the bicycle's locking/starting mechanism (likely Bluetooth or similar proximity-based protocol) could send commands to bypass the lock and ignition system. No valid credentials or user interaction appears to be required based on the CVSS vector (PR:N, UI:R indicates user interaction required on the victim's side, not the attacker's).

Prerequisites

Wireless proximity to the Yadea T5 Electric Bicycle
Knowledge of the wireless protocol or access to exploitation tools

remotely exploitableno authentication requiredlow complexityno patch availablewireless attack vector

Exploitability

Unlikely to be exploited — EPSS score 0.0%

Affected products (1)

ProductAffected VersionsFix Status

T5 Electric BicycleAll versionsNo fix yet

Remediation & Mitigation

0/3

Do now

0/2

WORKAROUNDUse a secondary mechanical lock (U-lock, chain lock, or cable lock) when parking the bicycle to prevent theft even if the electronic lock is compromised

HARDENINGPark the bicycle in a secure location with surveillance or high foot traffic when not in use

Schedule — requires maintenance window

0/1

Patching may require device reboot — plan for process interruption

HOTFIXContact Yadea support at https://yadea.com/contact-us to inquire about firmware updates or patches for your T5 Electric Bicycle model

CVEs (1)

CVE-2025-70994

View full CISA ICS-CERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/3d5257df-e3e5-48b0-b650-b12e6d30ba2c

Get OT security insights every Tuesday

Advisory breakdowns, a weekly summary, and incident analyses for the people actually defending OT environments. Free, no account required.