Main Vulnerability Database Vulnerabilities #VU92110

Insufficiently protected credentials in Vigilant Fixed LPR Coms Box (BCAV1F2-C600) - CVE-2024-38282

Published: June 14, 2024

Vulnerability identifier: #VU92110

CSH Severity: Low

CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2024-38282

CWE-ID: CWE-522

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
Vigilant Fixed LPR Coms Box (BCAV1F2-C600)

Software vendor:
Motorola

Description

The vulnerability allows a local user to compromise the target system.

The vulnerability exists due to insufficiently protected credentials. A local user can log into the camera's operating system and change the operations or shutdown the camera.

Remediation

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

External links

https://www.cisa.gov/news-events/ics-advisories/icsa-24-165-19

Insufficiently protected credentials in Vigilant Fixed LPR Coms Box (BCAV1F2-C600) - CVE-2024-38282

Description

Remediation

External links

Please verify you're human