Vulnerability Description
A CWE-552: Files or Directories Accessible to External Parties vulnerability exists in Telit Cinterion BGS5, Telit Cinterion EHS5/6/8, Telit Cinterion PDS5/6/8, Telit Cinterion ELS61/81, Telit Cinterion PLS62 that could allow an attacker with physical access to the target system to obtain a read/write access to any files and directories on the targeted system, including hidden files and directories.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Telit | Bgs5 Firmware | - |
| Telit | Bgs5 | - |
| Telit | Ehs5 Firmware | - |
| Telit | Ehs5 | - |
| Telit | Ehs6 Firmware | - |
| Telit | Ehs6 | - |
| Telit | Ehs8 Firmware | - |
| Telit | Ehs8 | - |
| Telit | Pds5 Firmware | - |
| Telit | Pds5 | - |
| Telit | Pds6 Firmware | - |
| Telit | Pds6 | - |
| Telit | Pds8 Firmware | - |
| Telit | Pds8 | - |
| Telit | Els61 Firmware | - |
| Telit | Els61 | - |
| Telit | Els81 Firmware | - |
| Telit | Els81 | - |
| Telit | Pls62 Firmware | - |
| Telit | Pls62 | - |
Related Weaknesses (CWE)
References
- https://ics-cert.kaspersky.com/advisories/2023/11/08/klcert-22-194-telit-cinteriThird Party Advisory
- https://ics-cert.kaspersky.com/advisories/2023/11/08/klcert-22-194-telit-cinteriThird Party Advisory
FAQ
What is CVE-2023-47612?
CVE-2023-47612 is a vulnerability with a CVSS score of 6.8 (MEDIUM). A CWE-552: Files or Directories Accessible to External Parties vulnerability exists in Telit Cinterion BGS5, Telit Cinterion EHS5/6/8, Telit Cinterion PDS5/6/8, Telit Cinterion ELS61/81, Telit Cinteri...
How severe is CVE-2023-47612?
CVE-2023-47612 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-47612?
Check the references section above for vendor advisories and patch information. Affected products include: Telit Bgs5 Firmware, Telit Bgs5, Telit Ehs5 Firmware, Telit Ehs5, Telit Ehs6 Firmware.