3.3

CVE-2023-47614

A CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists in Telit Cinterion BGS5, Telit Cinterion EHS5/6/8, Telit Cinterion PDS5/6/8, Telit Cinterion ELS61/81, Telit Cinterion PLS62 that could allow a local, low privileged attacker to disclose hidden virtual paths and file names on the targeted system.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
TelitBgs5 Firmware Version-
   TelitBgs5 Version-
TelitEhs5 Firmware Version-
   TelitEhs5 Version-
TelitEhs6 Firmware Version-
   TelitEhs6 Version-
TelitEhs8 Firmware Version-
   TelitEhs8 Version-
TelitPds5 Firmware Version-
   TelitPds5 Version-
TelitPds6 Firmware Version-
   TelitPds6 Version-
TelitPds8 Firmware Version-
   TelitPds8 Version-
TelitEls61 Firmware Version-
   TelitEls61 Version-
TelitEls81 Firmware Version-
   TelitEls81 Version-
TelitPls62 Firmware Version-
   TelitPls62 Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.02% 0.05
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 3.3 1.8 1.4
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
vulnerability@kaspersky.com 3.3 1.8 1.4
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.