Vulnerability Details CVE-2023-47612
A CWE-552: Files or Directories Accessible to External Parties vulnerability exists in Telit Cinterion BGS5, Telit Cinterion EHS5/6/8, Telit Cinterion PDS5/6/8, Telit Cinterion ELS61/81, Telit Cinterion PLS62 that could allow an attacker with physical access to the target system to obtain a read/write access to any files and directories on the targeted system, including hidden files and directories.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 15.3%
CVSS Severity
CVSS v3 Score 6.8
References
- https://ics-cert.kaspersky.com/advisories/2023/11/08/klcert-22-194-telit-cinterion-thales-gemalto-modules-files-or-directories-accessible-to-external-parties-vulnerability/
- https://ics-cert.kaspersky.com/advisories/2023/11/08/klcert-22-194-telit-cinterion-thales-gemalto-modules-files-or-directories-accessible-to-external-parties-vulnerability/
Products affected by CVE-2023-47612
-
cpe:2.3:h:telit:bgs5:-
-
cpe:2.3:h:telit:ehs5:-
-
cpe:2.3:h:telit:ehs6:-
-
cpe:2.3:h:telit:ehs8:-
-
cpe:2.3:h:telit:els61:-
-
cpe:2.3:h:telit:els81:-
-
cpe:2.3:h:telit:pds5:-
-
cpe:2.3:h:telit:pds6:-
-
cpe:2.3:h:telit:pds8:-
-
cpe:2.3:h:telit:pls62:-
-
cpe:2.3:o:telit:bgs5_firmware:-
-
cpe:2.3:o:telit:ehs5_firmware:-
-
cpe:2.3:o:telit:ehs6_firmware:-
-
cpe:2.3:o:telit:ehs8_firmware:-
-
cpe:2.3:o:telit:els61_firmware:-
-
cpe:2.3:o:telit:els81_firmware:-
-
cpe:2.3:o:telit:pds5_firmware:-
-
cpe:2.3:o:telit:pds6_firmware:-
-
cpe:2.3:o:telit:pds8_firmware:-
-
cpe:2.3:o:telit:pls62_firmware:-