CVE-2023-1383

🗓️ 03 May 2023 11:42:10Reported by BitdefenderType

Improper Enforcement of Behavioral Workflow in exchangeDeviceServices on amzn.dmgr allows local access registration.

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2023-1383	3 May 202316:31	–	circl
CNNVD	Amazon Fire TV Stick 安全漏洞	3 May 202300:00	–	cnnvd
Cvelist	CVE-2023-1383	3 May 202311:42	–	cvelist
EUVD	EUVD-2023-23639	3 Oct 202520:07	–	euvd
NVD	CVE-2023-1383	3 May 202312:16	–	nvd
Prion	Input validation	3 May 202312:16	–	prion
Positive Technologies	PT-2023-16945 · Amazon +1 · Amazon Fire Tv Stick +1	3 May 202300:00	–	ptsecurity
Vulnrichment	CVE-2023-1383	3 May 202311:42	–	vulnrichment

NVD

Node

amazon fire_osRange<6.2.9.5

AND

amazon fire_tv_stick_3rd_genMatch-

Node

amazon fire_osRange<7.6.3.3

AND

bestbuy insignia_tvMatch-

[
  {
    "defaultStatus": "unaffected",
    "product": "Fire TV Stick 3rd gen",
    "vendor": "AmazonFire TV Stick 3rd gen",
    "versions": [
      {
        "status": "affected",
        "version": "6.2.9.4"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "TV with FireOS ",
    "vendor": "Insignia",
    "versions": [
      {
        "status": "affected",
        "version": "7.6.3.2"
      }
    ]
  }
]

Source	Link
bitdefender	www.bitdefender.com/blog/labs/vulnerabilities-identified-amazon-fire-tv-stick-insignia-fire-os-tv-series/

21 Nov 2024 07:39Current

4.6Medium risk

Vulners AI Score4.6

CVSS 3.14.3 - 5.4

EPSS0.00152

SSVC

CWE-841