CVE-2023-47614

Summary

CVE-2023-47614 is a vulnerability affecting multiple Telit Cinterion models, including BGS5, EHS5/6/8, PDS5/6/8, ELS61/81, and PLS62. This issue, classified as CWE-200: Exposure of Sensitive Information to an Unauthorized Actor, enables a local, low-privileged attacker to access hidden virtual paths and file names on the targeted system. By exploiting this vulnerability, the attacker could potentially gain deeper system access and compromise sensitive information. This presents a significant risk to organizations using these Telit Cinterion devices, particularly those that handle sensitive data. It is recommended that affected organizations apply the available patches or mitigations to protect against potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.