PT-2023-22883 · Telecom · Telecom
Published
2023-08-10
·
Updated
2023-08-14
·
CVE-2023-30685
CVSS v3.1
4.3
Medium
| Vector | AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Telecom versions prior to SMR Aug-2023 Release 1
Description
The issue is related to improper access control, allowing local attackers to change TTY mode. This could potentially lead to unauthorized system modifications.
Recommendations
For versions prior to SMR Aug-2023 Release 1, update to SMR Aug-2023 Release 1 or later to resolve the issue. As a temporary workaround, consider restricting local access to the Telecom system to minimize the risk of exploitation.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Telecom