CVE-2023-33745

Name of the Vulnerable Software and Affected Versions TeleAdapt RoomCast TA-2400 versions 1.0 through 3.1

Description The issue concerns Improper Privilege Management. After establishing an adb connection, accessing the shell and entering the su command provides root access without requiring a password.

Recommendations For versions 1.0 through 3.1, consider restricting access to the adb connection to minimize the risk of exploitation. As a temporary workaround, avoid using the su command until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.