cbcvebase.
CVE-2023-47610
published 2023-11-09

CVE-2023-47610: A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists in Telit Cinterion EHS5/6/8 that could allow a remote unauthenticated attacker to…

PriorityP263critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
1.69%
74.3th percentile
A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists in Telit Cinterion EHS5/6/8 that could allow a remote unauthenticated attacker to execute arbitrary code on the targeted system by sending a specially crafted SMS message.

Detection & IOCsextracted from sources · hover to see the quote

  • CVE-2023-47610 is exploited via specially crafted binary SMS messages targeting the SUPL (User Plane Location) message handler on Telit Cinterion modems; monitor for unexpected or malformed binary SMS delivery to modem subscriber numbers
  • The attack vector is the SMS messaging interface present on all affected modems; attacker only needs the subscriber number of the target modem — no authentication required, no physical access needed
  • Operator-level binary SMS restrictions may be bypassed using a rogue/fake base station; detection should account for SMS originating from unexpected or spoofed base stations
  • Successful exploitation grants deep OS-level access including RAM and flash memory manipulation on the modem — look for anomalous modem firmware behavior or unexpected memory writes post-SMS receipt
  • ·Telit fixed some but not all of the disclosed vulnerabilities; patching status should be verified per device variant before assuming remediation
  • ·Because the modems are embedded in third-party solutions, determining the full scope of impacted products across industrial, healthcare, and telecom sectors is non-trivial
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.