PT-2019-12738 · Motorola · Motorola M2+1

Publicado

2019-05-23

Atualizado

2019-05-24

CVE-2019-12297

CVSS v3.1

9.8

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Motorola routers CX2 version 1.01 Motorola routers M2 version 1.01

Description An issue was discovered in scopd, where there is a use of an externally controlled format string. This issue is reachable via TCP port 8010 or UDP port 8080.

Recommendations For Motorola routers CX2 version 1.01, restrict access to TCP port 8010 and UDP port 8080 to minimize the risk of exploitation. For Motorola routers M2 version 1.01, restrict access to TCP port 8010 and UDP port 8080 to minimize the risk of exploitation.

Exploit

Correção

Use of Externally-Controlled Format String

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-134

Identificadores relacionados

CVE-2019-12297

Produtos afetados

Motorola Cx2

Motorola M2

PT-2019-12738 · Motorola · Motorola M2+1

CVE-2019-12297

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3