exploitDog

GHSA-jj6m-v8vh-9fgh

Опубликовано: 20 дек. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

An issue in Quectel BC25 with firmware version BC25PAR01A06 allows attackers to bypass authentication via a crafted NAS message.

An issue in Quectel BC25 with firmware version BC25PAR01A06 allows attackers to bypass authentication via a crafted NAS message.

Ссылки

EPSS

Процентиль: 7%

0.00027

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-306

Связанные уязвимости

CVE-2024-54982

nvd

около 1 года назад

An issue in Quectel BC25 with firmware version BC25PAR01A06 allows attackers to bypass authentication via a crafted NAS message. NOTE: Quectel disputes this because the issue is in the chipset supply chain and is not localized to one or more Quectel products.

EPSS

Процентиль: 7%

0.00027

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-306