Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-38279

The affected product is vulnerable to an attacker modifying the bootloader by using custom arguments to bypass authentication and gain access to the file system and obtain password hashes.

Published

2024-06-13T17:15:51.193

Last Modified

2024-11-21T09:25:15.470

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 4.6 (MEDIUM)

Weaknesses

Type: Secondary
CWE-288
Type: Primary
CWE-306

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	motorola	vigilant_fixed_lpr_coms_box_firmware	≤ 3.1.171.9	Yes
Hardware	motorola	vigilant_fixed_lpr_coms_box	-	No

References

https://www.cisa.gov/news-events/ics-advisories/icsa-24-165-19 Third Party Advisory, US Government Resource ([email protected])
https://www.cisa.gov/news-events/ics-advisories/icsa-24-165-19 Third Party Advisory, US Government Resource (af854a3a-2127-422b-91ae-364da2661108)