PT-2018-11083 · Momentum · Momentum Axel 720P

Published

2018-06-12

Updated

2019-10-03

CVE-2018-12259

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Momentum Axel 720P version 5.1.8

Description An issue allows root access to be obtained via UART pins without restrictions, leading to full system compromise.

Recommendations For version 5.1.8, restrict physical access to the UART pins to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

Exploit

Fix

Incorrect Permission

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-732

Related Identifiers

CVE-2018-12259

Affected Products

Momentum Axel 720P

PT-2018-11083 · Momentum · Momentum Axel 720P

CVE-2018-12259

Weakness Enumeration

Related Identifiers

Affected Products

References · 3