MEDIUMπŸ‡΅πŸ‡± Wersja polska

CVE-2024-38279

CVSS 5.1v4.0pub. 2024-06-13upd. 2024-11-21

The affected product is vulnerable to an attacker modifying the bootloader by using custom arguments to bypass authentication and gain access to the file system and obtain password hashes.

CVSS Vector
CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
  • Motorola Vigilant Fixed Lpr Coms Box

    HW
    Motorola
    wszystkie wersje
  • Motorola Vigilant Fixed Lpr Coms Box Firmware

    OS
    Motorola
    ≀ 3.1.171.9
πŸ”΅
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth Bypass
CWE
References

Related vulnerabilities

CVE-2024-38280HIGH7.0ten sam produkt

An unauthorized user is able to gain access to sensitive data, including credentials, by physically retrieving...

CVE-2024-38281HIGH8.6ten sam produkt

An attacker can access the maintenance console using hard coded credentials for a hidden wireless network on t...

CVE-2024-23627CRITICAL9.0PL βœ“ten sam vendor

Command injection w parametrze SaveStaticRouteIPv4Params routera Motorola MR2600

CVE-2024-23626CRITICAL9.0PL βœ“ten sam vendor

Command injection w parametrze SaveSysLogParams routera Motorola MR2600

CVE-2024-23628CRITICAL9.0PL βœ“ten sam vendor

Command injection w Motorola MR2600 β€” parametr SaveStaticRouteIPv6Params

CVE-2024-38279 β€” Motorola β€” Vigilant Fixed Lpr Coms Box β€” MEDIUM β€” CVSS 5.1 | CVEbaza.pl