Lucene search
K

5 matches found

Prion
Prion
added 2023/10/31 4:15 p.m.18 views

Code injection

lte-pic32-writer is a writer for PIC32 devices. In versions 0.0.1 and prior, those who use sendto.txt are vulnerable to attackers who known the IMEI reading the sendto.txt. The sendto.txt file can contain the SNSsuch as slack and zulip URL and API key. As of time of publication, a patch is not ye...

5CVSS7.6AI score0.00399EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/10/31 3:34 p.m.51 views

CVE-2023-46723

The CVE-2023-46723 issue affects lte-pic32-writer (versions 0.0.1 and earlier). The root cause is that the sendto.txt file can be read by anyone with knowledge of the IMEI, potentially exposing contained SNS URLs and API keys. Documented impact centers on confidentiality (exposure of keys/URLs); ...

8.9CVSS8.2AI score0.00399EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/10/31 3:34 p.m.19 views

CVE-2023-46723 lte-pic32-writer's sendto.txt may disclose URL and the API key

lte-pic32-writer is a writer for PIC32 devices. In versions 0.0.1 and prior, those who use sendto.txt are vulnerable to attackers who known the IMEI reading the sendto.txt. The sendto.txt file can contain the SNSsuch as slack and zulip URL and API key. As of time of publication, a patch is not ye...

8.9CVSS9AI score0.00399EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/10/31 12:0 a.m.6 views

PT-2023-30171 · Unknown · Lte-Pic32-Writer

Name of the Vulnerable Software and Affected Versions: lte-pic32-writer versions 0.0.1 and prior Description: The issue affects users of sendto.txt and allows attackers who know the IMEI to read the sendto.txt file, which may contain sensitive information such as SNS URLs and API keys...

8.9CVSS7.3AI score0.00399EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/10/31 12:0 a.m.4 views

lte-pic32-writer security vulnerability

lte-pic32-writer is a writing program for pic32 devices by paijp personal developer. A security vulnerability exists in lte-pic32-writer v0.0.1 and earlier versions, which originates from the fact that users with an IMEI can read sendto.txt, and the sendto.txt file can contain SNS e.g. slack, zul...

8.9CVSS6.6AI score0.00399EPSS
Exploits0References2
Rows per page
Query Builder