Name of the Vulnerable Software and Affected Versions Гранит-Навигатор-6.18

Description The issue is related to the lack of a user authentication mechanism when configuring the device using SMS commands. This could allow a remote attacker to read and modify the device's configuration parameters, potentially compromising the system by using the SIM card's identification number.

Recommendations For Гранит-Навигатор-6.18, consider implementing a secure authentication mechanism for configuration changes via SMS commands to prevent unauthorized access. As a temporary workaround, restrict the use of SMS commands for configuration changes until a proper authentication mechanism is in place.