Vulnerability Description
A CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists in Telit Cinterion BGS5, Telit Cinterion EHS5/6/8, Telit Cinterion PDS5/6/8, Telit Cinterion ELS61/81, Telit Cinterion PLS62 that could allow a local, low privileged attacker to disclose hidden virtual paths and file names on the targeted system.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Telit | Bgs5 Firmware | - |
| Telit | Bgs5 | - |
| Telit | Ehs5 Firmware | - |
| Telit | Ehs5 | - |
| Telit | Ehs6 Firmware | - |
| Telit | Ehs6 | - |
| Telit | Ehs8 Firmware | - |
| Telit | Ehs8 | - |
| Telit | Pds5 Firmware | - |
| Telit | Pds5 | - |
| Telit | Pds6 Firmware | - |
| Telit | Pds6 | - |
| Telit | Pds8 Firmware | - |
| Telit | Pds8 | - |
| Telit | Els61 Firmware | - |
| Telit | Els61 | - |
| Telit | Els81 Firmware | - |
| Telit | Els81 | - |
| Telit | Pls62 Firmware | - |
| Telit | Pls62 | - |
Related Weaknesses (CWE)
References
- https://ics-cert.kaspersky.com/advisories/2023/11/08/klcert-22-210-telit-cinteriThird Party Advisory
- https://ics-cert.kaspersky.com/advisories/2023/11/08/klcert-22-210-telit-cinteriThird Party Advisory
FAQ
What is CVE-2023-47614?
CVE-2023-47614 is a vulnerability with a CVSS score of 3.3 (LOW). A CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists in Telit Cinterion BGS5, Telit Cinterion EHS5/6/8, Telit Cinterion PDS5/6/8, Telit Cinterion ELS61/81, Telit ...
How severe is CVE-2023-47614?
CVE-2023-47614 has been rated LOW with a CVSS base score of 3.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-47614?
Check the references section above for vendor advisories and patch information. Affected products include: Telit Bgs5 Firmware, Telit Bgs5, Telit Ehs5 Firmware, Telit Ehs5, Telit Ehs6 Firmware.