CVE-2023-31191

Name of the Vulnerable Software and Affected Versions DroneScout ds230 Remote ID receiver from BlueMark Innovations versions 20211210-1627 through 20230329-1042

Description The issue is related to an information loss vulnerability through traffic injection. An attacker can exploit this by injecting high power spoofed Open Drone ID (ODID) messages on carefully selected channels, forcing the DroneScout ds230 Remote ID receiver to drop real Remote ID (RID) information. Instead, it generates and transmits JSON encoded MQTT messages containing crafted RID information, resulting in the MQTT broker having no access to the drones' real RID information. This affects the adjacent channel suppression algorithm in the firmware.

Recommendations For versions 20211210-1627 through 20230329-1042, consider disabling the adjacent channel suppression algorithm as a temporary workaround until a patch is available. Restrict access to the MQTT broker to minimize the risk of exploitation. Avoid using crafted RID information in JSON encoded MQTT messages until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.