Vulnerability Details CVE-2023-5499
Information exposure vulnerability in Shenzhen Reachfar v28, the exploitation of which could allow a remote attacker to retrieve all the week's logs stored in the 'log2' directory. An attacker could retrieve sensitive information such as remembered wifi networks, sent messages, SOS device locations and device configurations.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 49.7%
CVSS Severity
CVSS v3 Score 7.5
References
Products affected by CVE-2023-5499
-
cpe:2.3:h:reachfargps:reachfar_gps:-
-
cpe:2.3:o:reachfargps:reachfar_gps_firmware:28