CVE-2023-46294

LOW

Teledyne FLIR M300 <2.00-19 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-46294. PoCs published by Manouchehri.

AI-analyzed exploit summary The repository describes a vulnerability in Teledyne FLIR M300 where locally encrypted account passwords can be decrypted to plaintext using the `umSetup` utility with root permissions. The issue remains unpatched despite multiple disclosures.

Description

An issue was discovered in Teledyne FLIR M300 2.00-19. User account passwords are encrypted locally, and can be decrypted to cleartext passwords using the utility umSetup. This utility requires root permissions to execute.

Exploits (1)

gitlab WRITEUP

by Manouchehri · poc

https://gitlab.com/Manouchehri/cve-2023-46294

View Code ZIP pw:eip

The repository describes a vulnerability in Teledyne FLIR M300 where locally encrypted account passwords can be decrypted to plaintext using the `umSetup` utility with root permissions. The issue remains unpatched despite multiple disclosures.

Classification

Writeup 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Teledyne FLIR M300 <= 2.00-38

Auth required

Prerequisites: root access · presence of `umSetup` utility

MITRE ATT&CK

T1005 - Data from Local System T1552 - Unsecured Credentials

devstral-2 · analyzed Feb 23, 2026 Full analysis →

References (2)

Core 2

Core References

Various Sources

https://Loudmouth.io

Various Sources

https://gitlab.com/loudmouth-security/vulnerability-disclosures/cve-2023-46294

Scores

CVSS v3 3.4

EPSS 0.0011

EPSS Percentile 1.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-312

Status published

Published May 01, 2024

Tracked Since Feb 18, 2026