CVE-2023-47612 MEDIUM

CVE-2023-47612

Vendor Telit Cinterion
Product BGS5
Weakness CWE-552 · Files accessible externally
Published November 9, 2023
Last update September 4, 2024

CVSS base score

6.8/10
Attack vector Physical
Attack complexity Low
Privileges required None
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

A CWE-552: Files or Directories Accessible to External Parties vulnerability exists in Telit Cinterion BGS5, Telit Cinterion EHS5/6/8, Telit Cinterion PDS5/6/8, Telit Cinterion ELS61/81, Telit Cinterion PLS62 that could allow an attacker with physical access to the target system to obtain a read/write access to any files and directories on the targeted system, including hidden files and directories.

Key dates

02Disclosure timeline

November 9, 2023 CVE published
September 4, 2024 Record updated