CVE-2021-3460

HIGH

Motorola MH702x Firmware < 2.0.0.301 - Improper Certificate Validation

Title source: llm

Description

The Motorola MH702x devices, prior to version 2.0.0.301, do not properly verify the server certificate during communication with the support server which could lead to the communication channel being accessible by an attacker.

References (1)

Core 1

Core References

Vendor Advisory x_refsource_misc

https://motorolamentor.zendesk.com/hc/en-us/articles/1260804087249

Scores

CVSS v3 8.1

EPSS 0.0056

EPSS Percentile 42.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-295

Status published

Products (1)

motorola/mh702x_firmware < 2.0.0.301

Published Apr 13, 2021

Tracked Since Feb 18, 2026