CVE-2023-30685

Summary

CVE-2023-30685 is an improper access control vulnerability affecting Telecom software prior to the SMR Aug-2023 Release 1. This issue permits local attackers to manipulate TTY mode settings, which could lead to unauthorized access or privilege escalation. The vulnerability arises due to insufficient access controls in place, posing a significant risk to system security. Successful exploitation of this weakness could allow attackers to gain unintended access to critical system functionalities, potentially leading to data breaches or system compromises. Network administrators are advised to apply the latest security update to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.