A CWE-23: Relative Path Traversal vulnerability exists in Telit Cinterion BGS5, Telit Cinterion EHS5/6/8, Telit Cinterion PDS5/6/8, Telit Cinterion ELS61/81, Telit Cinterion PLS62 that could allow a local, low privileged attacker to escape from virtual directories and get read/write access to protected files on the targeted system.
References
Link | Resource |
---|---|
https://ics-cert.kaspersky.com/advisories/2023/11/08/klcert-22-211-telit-cinterion-thales-gemalto-modules-relative-path-traversal/ | Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
AND |
|
Configuration 10 (hide)
AND |
|
History
16 Nov 2023, 16:39
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.1 |
CPE | cpe:2.3:h:telit:bgs5:-:*:*:*:*:*:*:* cpe:2.3:h:telit:pds8:-:*:*:*:*:*:*:* cpe:2.3:o:telit:pds5_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:telit:ehs5_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:telit:ehs5:-:*:*:*:*:*:*:* cpe:2.3:o:telit:pls62_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:telit:els61:-:*:*:*:*:*:*:* cpe:2.3:o:telit:els61_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:telit:pds6:-:*:*:*:*:*:*:* cpe:2.3:o:telit:bgs5_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:telit:ehs8:-:*:*:*:*:*:*:* cpe:2.3:o:telit:ehs8_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:telit:els81:-:*:*:*:*:*:*:* cpe:2.3:o:telit:ehs6_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:telit:ehs6:-:*:*:*:*:*:*:* cpe:2.3:h:telit:pds5:-:*:*:*:*:*:*:* cpe:2.3:o:telit:els81_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:telit:pds8_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:telit:pls62:-:*:*:*:*:*:*:* cpe:2.3:o:telit:pds6_firmware:-:*:*:*:*:*:*:* |
|
References | () https://ics-cert.kaspersky.com/advisories/2023/11/08/klcert-22-211-telit-cinterion-thales-gemalto-modules-relative-path-traversal/ - Third Party Advisory | |
First Time |
Telit pds8
Telit ehs6 Telit ehs5 Firmware Telit pds6 Telit pds6 Firmware Telit pds5 Firmware Telit bgs5 Telit els81 Telit bgs5 Firmware Telit pls62 Firmware Telit ehs6 Firmware Telit ehs8 Telit ehs5 Telit Telit pds5 Telit pls62 Telit els61 Telit ehs8 Firmware Telit els61 Firmware Telit els81 Firmware Telit pds8 Firmware |
|
CWE | CWE-22 |
09 Nov 2023, 07:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-11-09 07:15
Updated : 2024-02-28 20:54
NVD link : CVE-2023-47613
Mitre link : CVE-2023-47613
CVE.ORG link : CVE-2023-47613
JSON object : View
Products Affected
telit
- els81_firmware
- pls62_firmware
- ehs6
- ehs5_firmware
- els81
- pds8
- pds6
- els61_firmware
- els61
- bgs5
- pds8_firmware
- pds6_firmware
- pls62
- pds5
- ehs8_firmware
- bgs5_firmware
- ehs5
- ehs6_firmware
- pds5_firmware
- ehs8