CVE-2023-1383

🗓️ 03 May 2023 11:42:10Reported by BitdefenderType

An Improper Enforcement of Behavioral Workflow vulnerability in exchangeDeviceServices function on amzn.dmgr service in Amazon Fire TV Stick 3rd gen and Insignia TV with FireO

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2023-1383	3 May 202316:31	–	circl
CNNVD	Amazon Fire TV Stick 安全漏洞	3 May 202300:00	–	cnnvd
CVE	CVE-2023-1383	3 May 202311:42	–	cve
EUVD	EUVD-2023-23639	3 Oct 202520:07	–	euvd
NVD	CVE-2023-1383	3 May 202312:16	–	nvd
Prion	Input validation	3 May 202312:16	–	prion
Positive Technologies	PT-2023-16945 · Amazon +1 · Amazon Fire Tv Stick +1	3 May 202300:00	–	ptsecurity
Vulnrichment	CVE-2023-1383	3 May 202311:42	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "product": "Fire TV Stick 3rd gen",
    "vendor": "AmazonFire TV Stick 3rd gen",
    "versions": [
      {
        "status": "affected",
        "version": "6.2.9.4"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "TV with FireOS ",
    "vendor": "Insignia",
    "versions": [
      {
        "status": "affected",
        "version": "7.6.3.2"
      }
    ]
  }
]

Source	Link
bitdefender	www.bitdefender.com/blog/labs/vulnerabilities-identified-amazon-fire-tv-stick-insignia-fire-os-tv-series/

03 May 2023 11:42Current

5.7Medium risk

Vulners AI Score5.7

CVSS 3.15.4

EPSS0.00152

CWE-841