CVE-2023-41818Medium
Share link
Anyone with the link can open this vulnerability.
An improper use of the SD card for sensitive data vulnerability was reported in the Motorola Device Help application that could allow a loc…
CVSS
5.0
Medium
EPSS
0.00
p4
Published
2023-01-01
Updated
2023-01-01
Description
An improper use of the SD card for sensitive data vulnerability was reported in the Motorola Device Help application that could allow a local attacker to read system logs.
Tags · CWE
CWE-921
CWE-921BaseIncomplete
Storage of Sensitive Data in a Mechanism without Access Control
The product stores sensitive information in a file system or device that does not have built-in access control.
https://cwe.mitre.org/data/definitions/921.html →Open in CWE collection →CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N
Timeline
2023-01-01
Published
2023-01-01
Updated
CVSS 3.1 breakdown
Attack Vector
AV: L
Local (L)
Attack Complexity
AC: L
Low (L)
Privileges Required
PR: L
Low (L)
User Interaction
UI: R
Required (R)
Scope
S: U
Unchanged (U)
Confidentiality Impact
C: H
High (H)
Integrity Impact
I: N
None (N)
Availability Impact
A: N
None (N)
Exploit indicators
EPSS
0.001 · p4
Known exploited (KEV)
No
Known exploits — Сканер-ВС
No Сканер-ВС checks registered for this vulnerability yet.
No vulnerabilities match your filters.