PT-2019-12237 · Motorola · Motorola M2+1

Published

2019-04-18

Updated

2020-08-24

CVE-2019-11321

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions Motorola CX2 version 1.01 Motorola M2 version 1.01

Description An issue allows users to send hnap requests to TCP port 8010 without authentication, potentially obtaining sensitive information such as the MAC addresses of connected client devices.

Recommendations For Motorola CX2 version 1.01, restrict access to TCP port 8010 to prevent unauthorized requests. For Motorola M2 version 1.01, restrict access to TCP port 8010 to prevent unauthorized requests.

Exploit

Fix

Missing Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-306

Related Identifiers

CVE-2019-11321

Affected Products

Motorola Cx2

Motorola M2

PT-2019-12237 · Motorola · Motorola M2+1

CVE-2019-11321

Weakness Enumeration

Related Identifiers

Affected Products

References · 3