exploitDog

CVE-2023-31280

Опубликовано: 21 дек. 2024

Источник: nvd

CVSS3: 5.3

EPSS Низкий

Описание

An AirVantage online Warranty Checker tool vulnerability could allow an attacker to perform bulk enumeration of IMEI and Serial Numbers pairs. The AirVantage Warranty Checker is updated to no longer return the IMEI and Serial Number in addition to the warranty status when the Serial Number or IMEI is used to look up warranty status.

Ссылки

https://source.sierrawireless.com/resources/security-bulletins/sierra-wireless-technical-bulletin---swi-psa-2023-002/

EPSS

Процентиль: 31%

0.00115

Низкий

5.3 Medium

CVSS3

Дефекты

CWE-200

Связанные уязвимости

GHSA-c3vh-vj4j-ph6x

CVSS3: 5.3

github

около 1 года назад

An AirVantage online Warranty Checker tool vulnerability could allow an attacker to perform bulk enumeration of IMEI and Serial Numbers pairs. The AirVantage Warranty Checker is updated to no longer return the IMEI and Serial Number in addition to the warranty status when the Serial Number or IMEI is used to look up warranty status.

EPSS

Процентиль: 31%

0.00115

Низкий

5.3 Medium

CVSS3

Дефекты

CWE-200