PT-2023-13508 · Sdm600 · Sdm600

Published

2023-03-28

Updated

2023-04-04

CVE-2022-3685

CVSS v3.1

7.5

High

Vector

AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions SDM600 versions prior to 1.3.0

Description A vulnerability exists in the SDM600 software, where it operates at a higher privilege level than required, allowing an attacker to escalate privileges.

Recommendations Update to version 1.3.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the software to minimize the risk of exploitation.

Fix

Improper Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-285

Related Identifiers

CVE-2022-3685

Affected Products

Sdm600

PT-2023-13508 · Sdm600 · Sdm600

CVE-2022-3685

Weakness Enumeration

Related Identifiers

Affected Products

References · 6