PT-2023-22920 · Unknown · Inboundsmshandler
Published
2023-09-05
·
Updated
2023-09-09
·
CVE-2023-30719
CVSS v3.1
4.0
Medium
| Vector | AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
InboundSmsHandler versions prior to SMR Sep-2023 Release 1
Description
The issue allows local attackers to access certain message data due to an Exposure of Sensitive Information vulnerability in InboundSmsHandler. This vulnerability enables local attackers to gain unauthorized access to sensitive message data.
Recommendations
For versions prior to SMR Sep-2023 Release 1, update to SMR Sep-2023 Release 1 or later to resolve the issue. As a temporary workaround, consider restricting access to the InboundSmsHandler to minimize the risk of exploitation.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Inboundsmshandler