Lucene search

NCSC-NLCVELIST:CVE-2023-23771

HistoryAug 29, 2023 - 8:48 a.m.

CVE-2023-23771

2023-08-2908:48:26

CWE-259

NCSC-NL

www.cve.org

motorola

mbts

base radio

hard-coded

backdoor

password

vulnerability

8.4 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H/RL:U/RC:C/CR:H/IR:H/AR:M/MAV:L/MAC:L/MPR:N/MUI:N/MS:U/MC:H/MI:H/MA:H

8.6 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

21.5%

JSON

Motorola MBTS Base Radio accepts hard-coded backdoor password. The Motorola MBTS Base Radio Man Machine Interface (MMI), allowing for service technicians to diagnose and configure the device, accepts a hard-coded backdoor password that cannot be changed or disabled.

CNA Affected

[
  {
    "vendor": "Motorola",
    "product": "MBTS Base Radio",
    "versions": [
      {
        "version": "R05.x2.57",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  }
]

References

tetraburst.com/

8.4 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H/RL:U/RC:C/CR:H/IR:H/AR:M/MAV:L/MAC:L/MPR:N/MUI:N/MS:U/MC:H/MI:H/MA:H

8.6 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

21.5%

JSON

Related for CVELIST:CVE-2023-23771