cbcvebase.

Motorola Solutions Vigilant Fixed Lpr Coms Box vulnerabilities

7 known vulnerabilities affecting motorola_solutions/vigilant_fixed_lpr_coms_box.

Total CVEs
7
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH3MEDIUM3

Vulnerabilities

Page 1 of 1
CVE-2024-38281P2CRITICALCVSS 9.8≤ 3.1.171.92024-06-13
CVE-2024-38281 [CRITICAL] CWE-798 CVE-2024-38281: An attacker can access the maintenance console using hard coded credentials for a hidden wireless ne An attacker can access the maintenance console using hard coded credentials for a hidden wireless network on the device.
nvd
CVE-2024-38284P3HIGHCVSS 8.7≤ 3.1.171.92024-06-13
CVE-2024-38284 [HIGH] CWE-294 CVE-2024-38284: Transmitted data is logged between the device and the backend service. An attacker could use these l Transmitted data is logged between the device and the backend service. An attacker could use these logs to perform a replay attack to replicate calls.
nvd
CVE-2024-38282P3HIGHCVSS 8.5≤ 3.1.171.92024-06-13
CVE-2024-38282 [HIGH] CWE-522 CVE-2024-38282: Utilizing default credentials, an attacker is able to log into the camera's operating system which c Utilizing default credentials, an attacker is able to log into the camera's operating system which could allow changes to be made to the operations or shutdown the camera requiring a physical reboot of the system.
nvd
CVE-2024-38279P4MEDIUMCVSS 4.6≤ 3.1.171.92024-06-13
CVE-2024-38279 [MEDIUM] CWE-288 CVE-2024-38279: The affected product is vulnerable to an attacker modifying the bootloader by using custom arguments The affected product is vulnerable to an attacker modifying the bootloader by using custom arguments to bypass authentication and gain access to the file system and obtain password hashes.
nvd
CVE-2024-38285P4HIGHCVSS 7.0≤ 3.1.171.92024-06-13
CVE-2024-38285 [HIGH] CWE-522 CVE-2024-38285: Logs storing credentials are insufficiently protected and can be decoded through the use of open sou Logs storing credentials are insufficiently protected and can be decoded through the use of open source tools.
nvd
CVE-2024-38280P4MEDIUMCVSS 4.6≤ 3.1.171.92024-06-13
CVE-2024-38280 [MEDIUM] CWE-313 CVE-2024-38280: An unauthorized user is able to gain access to sensitive data, including credentials, by physically An unauthorized user is able to gain access to sensitive data, including credentials, by physically retrieving the hard disk of the product as the data is stored in clear text.
nvd
CVE-2024-38283P4MEDIUMCVSS 5.1≤ 3.1.171.92024-06-13
CVE-2024-38283 [MEDIUM] CWE-311 CVE-2024-38283: Sensitive customer information is stored in the device without encryption. Sensitive customer information is stored in the device without encryption.
nvd
Motorola Solutions Vigilant Fixed Lpr Coms Box vulnerabilities | cvebase