Lucene search

K
cvelistKasperskyCVELIST:CVE-2023-47612
HistoryNov 09, 2023 - 12:07 p.m.

CVE-2023-47612

2023-11-0912:07:54
CWE-552
Kaspersky
www.cve.org
cwe-552
telit cinterion
physical access
read/write access
hidden files

6.8 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

6.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

21.4%

A CWE-552: Files or Directories Accessible to External Parties vulnerability exists in Telit Cinterion BGS5, Telit Cinterion EHS5/6/8, Telit Cinterion PDS5/6/8, Telit Cinterion ELS61/81, Telit Cinterion PLS62 that could allow an attacker with physical access to the target system to obtain a read/write access to any files and directories on the targeted system, including hidden files and directories.

CNA Affected

[
  {
    "vendor": "Telit Cinterion",
    "product": "BGS5",
    "defaultStatus": "affected"
  },
  {
    "vendor": "Telit Cinterion",
    "product": "EHS5",
    "defaultStatus": "affected"
  },
  {
    "vendor": "Telit Cinterion",
    "product": "EHS6",
    "defaultStatus": "affected"
  },
  {
    "vendor": "Telit Cinterion",
    "product": "EHS8",
    "defaultStatus": "affected"
  },
  {
    "vendor": "Telit Cinterion",
    "product": "PDS5",
    "defaultStatus": "affected"
  },
  {
    "vendor": "Telit Cinterion",
    "product": "PDS6",
    "defaultStatus": "affected"
  },
  {
    "vendor": "Telit Cinterion",
    "product": "PDS8",
    "defaultStatus": "affected"
  },
  {
    "vendor": "Telit Cinterion",
    "product": "ELS61",
    "defaultStatus": "affected"
  },
  {
    "vendor": "Telit Cinterion",
    "product": "ELS81",
    "defaultStatus": "affected"
  },
  {
    "vendor": "Telit Cinterion",
    "product": "PLS62",
    "defaultStatus": "affected"
  }
]

6.8 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

6.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

21.4%

Related for CVELIST:CVE-2023-47612