216.73.217.50

CVE-2024-22123

· Published 12/08/2024 13:38 · Modified 12/08/2024 13:41

Labels: CVE-2024-22123 2024-08-12CVE-2024-22123CWE-94[email protected]

Essential information

Published
12/08/2024 13:38
Modified
12/08/2024 13:41
Author
Creator
CVSS
2.7 LOW (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N

CVSS metrics

Description

Setting SMS media allows to set GSM modem file. Later this file is used as Linux device. But due everything is a file for Linux, it is possible to set another file, e.g. log file and zabbix_server will try to communicate with it as modem. As a result, log file will be broken with AT commands and small part for log file content will be leaked to UI.

NVD status

Status
Awaiting Analysis — CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
Source
[email protected]
NVD
View on NVD

References