CVE-2023-21631

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jul 4, 2023

Updated: Apr 12, 2024

CWE ID 20

Summary

CVE-2023-21631 is a vulnerability affecting Modem devices due to a weak configuration caused by insufficient input validation during the processing of LTE security mode command messages from networks. An attacker can exploit this issue by sending malicious commands, potentially leading to unauthorized access to the affected device or network. This vulnerability could result in significant security risks, such as data breaches or denial-of-service attacks. It is essential for device manufacturers and network providers to apply the necessary patches to mitigate this issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/r26mts
https://www.cve.org/CVERecord?id=CVE-2023-21631
https://nvd.nist.gov/vuln/detail/CVE-2023-21631

Back to Vulnerability Database

CVE-2023-21631

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations