A CWE-23: Relative Path Traversal vulnerability exists in Telit Cinterion BGS5, Telit Cinterion EHS5/6/8, Telit Cinterion PDS5/6/8, Telit Cinterion ELS61/81, Telit Cinterion PLS62 that could allow a local, low privileged attacker to escape from virtual directories and get read/write access to protected files on the targeted system.
References
Link | Resource |
---|---|
https://ics-cert.kaspersky.com/advisories/2023/11/08/klcert-22-211-telit-cinterion-thales-gemalto-modules-relative-path-traversal/ | Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
AND |
|
Configuration 10 (hide)
AND |
|
History
16 Nov 2023, 16:39
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:telit:pds8_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:telit:els81_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:telit:pds5_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:telit:ehs6:-:*:*:*:*:*:*:* cpe:2.3:h:telit:bgs5:-:*:*:*:*:*:*:* cpe:2.3:o:telit:pds6_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:telit:ehs6_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:telit:pls62:-:*:*:*:*:*:*:* cpe:2.3:h:telit:ehs8:-:*:*:*:*:*:*:* cpe:2.3:h:telit:els81:-:*:*:*:*:*:*:* cpe:2.3:h:telit:pds5:-:*:*:*:*:*:*:* cpe:2.3:o:telit:ehs5_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:telit:els61:-:*:*:*:*:*:*:* cpe:2.3:h:telit:pds8:-:*:*:*:*:*:*:* cpe:2.3:h:telit:ehs5:-:*:*:*:*:*:*:* cpe:2.3:o:telit:bgs5_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:telit:pds6:-:*:*:*:*:*:*:* cpe:2.3:o:telit:ehs8_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:telit:els61_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:telit:pls62_firmware:-:*:*:*:*:*:*:* |
|
First Time |
Telit ehs6
Telit ehs5 Telit ehs5 Firmware Telit Telit els81 Firmware Telit pds8 Telit pds5 Telit els81 Telit pls62 Telit ehs6 Firmware Telit els61 Firmware Telit ehs8 Telit bgs5 Firmware Telit ehs8 Firmware Telit pls62 Firmware Telit pds5 Firmware Telit pds6 Firmware Telit bgs5 Telit pds8 Firmware Telit els61 Telit pds6 |
|
References | () https://ics-cert.kaspersky.com/advisories/2023/11/08/klcert-22-211-telit-cinterion-thales-gemalto-modules-relative-path-traversal/ - Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.1 |
CWE | CWE-22 |
09 Nov 2023, 13:46
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-11-09 07:15
Updated : 2023-12-10 15:26
NVD link : CVE-2023-47613
Mitre link : CVE-2023-47613
CVE.ORG link : CVE-2023-47613
JSON object : View
Products Affected
telit
- els81
- ehs6_firmware
- ehs5
- bgs5
- pds6
- ehs5_firmware
- bgs5_firmware
- pds5_firmware
- els61
- pds6_firmware
- ehs8
- pls62_firmware
- pds8
- pls62
- els81_firmware
- els61_firmware
- pds8_firmware
- pds5
- ehs8_firmware
- ehs6