CVE-2019-20472

Name of the Vulnerable Software and Affected Versions One2Track version 2019-12-08

Description An issue was discovered where any SIM card used with the device cannot have a PIN configured. If a PIN is configured, the device produces a "Remove PIN and restart!" message and cannot be used, making it easier for an attacker to use the SIM card by stealing the device.

Recommendations For One2Track version 2019-12-08, consider removing the PIN from the SIM card to allow the device to function, as a temporary workaround until a more permanent solution is available. However, this does not mitigate the underlying issue and users are urged to update to the latest version as soon as possible to ensure the security of their devices. At the moment, there is no information about a newer version that contains a fix for this vulnerability.