Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2023-23774
HistoryAug 29, 2023 - 9:15 a.m.

CVE-2023-23774

2023-08-2909:15:09
CWE-703
CWE-755
[email protected]
web.nvd.nist.gov
motorola
mbts
site controller
vulnerability
debug prompt

8.4 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

23.1%

JSON

Motorola EBTS/MBTS Site Controller drops to debug prompt on unhandled exception. The Motorola MBTS Site Controller exposes a debug prompt on the device’s serial port in case of an unhandled exception. This allows an attacker with physical access that is able to trigger such an exception to extract secret key material and/or gain arbitrary code execution on the device.

Affected configurations

NVD
Node
motorolaebts_site_controller_firmwareMatch-
AND
motorolaebts_site_controllerMatch-
Node
motorolambts_site_controller_firmwareMatch-
AND
motorolambts_site_controllerMatch-

References

Related

prion 1
cve 1
cvelist 1
prion
prion
Code injection
2023-08-29 09:15:00
cve
cve
CVE-2023-23774
2023-08-29 09:15:09
cvelist
cvelist
CVE-2023-23774
2023-08-29 08:49:32

8.4 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

23.1%

JSON
Related for NVD:CVE-2023-23774
prion1cve1cvelist1