Researchers caught quite a few safety vulnerabilities riddling Cinterion mobile modems, exploiting which might threaten hundreds of thousands of gadgets. Since no energetic patches at the moment exist for the failings, the researchers suggest making use of the recommended mitigations to stop potential dangers.
Quite a few Vulnerabilities Caught In Cinterion Mobile Modems
Researchers from Kaspersky found eight completely different vulnerabilities in Telit Cinterion mobile modems. Given the intensive use of those modules within the industrial sector, researchers concern that the vulnerabilities pose a extreme menace to industrial networks and IoT gadgets.
Based on the completely different advisories from Kasperksy, the vulnerabilities embrace,
- CVE-2023-47610 (CVSS 8.1): That is essentially the most extreme of all vulnerabilities. The researchers describe it as a heap overflow vulnerability modems’ SUPL message handlers. Exploiting this flaw requires an unauthenticated adversary to ship maliciously crafted SMS to the goal system. Then, the attacker could execute arbitrary codes on the goal for any malicious functions, reminiscent of gaining persistent entry to the system, manipulating RAM and flash reminiscence, and take full management of the goal modem.
- CVE-2023-47611 (CVSS 7.3): This vulnerability existed as a consequence of improper privilege administration, permitting an area attacker to achieve manufacturer-level privileges on the goal modem.
- CVE-2023-47612 (CVSS 6.8): An attacker with bodily entry to the goal system might entry, learn, or write any information and directories.
- CVE-2023-47613 (CVSS 4.4): A low privileged attacker might exploit this path traversal vulnerability escape digital listing and achieve learn/write entry to protected information.
- CVE-2023-47614 (CVSS 3.3): An info disclosure vulnerability that uncovered hidden paths and file names to an unauthorized attacker.
- CVE-2023-47615 (CVSS 3.3): One other info disclosure that uncovered delicate knowledge by environmental variables to an unauthorized low privileged attacker.
- CVE-2023-47616 (CVSS 3.3): An unauthorized attacker might entry delicate info through bodily entry to the goal system.
These vulnerabilities have an effect on the modems Cinterion BGS5, Cinterion EHS5/6/8, Cinterion PDS5/6/8, Cinterion ELS61/81, and Cinterion PLS62. For now, the precise variety of gadgets utilizing the weak modems stays unclear. Nonetheless, the researchers have communicated the matter to the distributors recognized for utilizing these modems.
Really useful Mitigations
As common mitigation to CVE-2023-47610, the researchers advise telecom operators to disable SMS supply to weak gadgets, and to make use of a non-public entry level title (APN). For different vulnerabilities, the researchers advise limiting bodily entry to weak methods, making use of app signature verification to stop untrusted MIDlets set up, and retaining the methods up-to-date with newest safety fixes.
The researchers presented their findings on the OffensiveCon in Berlin. Sooner or later, they’ll elaborate on these findings in a white paper.
Tell us your ideas within the feedback.
