Lucene search

[email protected]CVE-2022-26941

HistoryOct 19, 2023 - 10:15 a.m.

CVE-2022-26941

2023-10-1910:15:09

CWE-134

[email protected]

web.nvd.nist.gov

cve-2022-26941

format string vulnerability

motorola mtm5000

firmware

at command handler

at+ctgl

arbitrary code execution

nvd

9.6 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H/E:F/RL:U/RC:C/MAV:A/MAC:L/MPR:N/MUI:N/MS:C/MC:H/MI:H/MA:H

8.8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

23.2%

JSON

A format string vulnerability exists in Motorola MTM5000 series firmware AT command handler for the AT+CTGL command. An attacker-controllable string is improperly handled, allowing for a write-anything-anywhere scenario. This can be leveraged to obtain arbitrary code execution inside the teds_app binary, which runs with root privileges.

Affected configurations

NVD

Node

motorolamtm5500_firmwareMatch-

AND

motorolamtm5500Match-

Node

motorolamtm5400_firmwareMatch-

AND

motorolamtm5400Match-

CPENameOperatorVersion
motorola:mtm5500_firmwaremotorola mtm5500 firmwareeq-

CPE	Name	Operator	Version
motorola:mtm5500_firmware	motorola mtm5500 firmware	eq	-

CNA Affected

[
  {
    "vendor": "Motorola",
    "product": "Mobile Radio",
    "versions": [
      {
        "version": "MTM5000",
        "status": "affected"
      }
    ]
  }
]

References

tetraburst.com/

9.6 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H/E:F/RL:U/RC:C/MAV:A/MAC:L/MPR:N/MUI:N/MS:C/MC:H/MI:H/MA:H

8.8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

23.2%

JSON

Related for CVE-2022-26941

cvelist1 nvd1 prion1