Description
A CWE-552: Files or Directories Accessible to External Parties vulnerability exists in Telit Cinterion BGS5, Telit Cinterion EHS5/6/8, Telit Cinterion PDS5/6/8, Telit Cinterion ELS61/81, Telit Cinterion PLS62 that could allow an attacker with physical access to the target system to obtain a read/write access to any files and directories on the targeted system, including hidden files and directories.
Scores
CVSS v3
6.8
EPSS
0.0004
EPSS Percentile
13.4%
Attack Vector
PHYSICAL
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-552
Status
published
Products (10)
telit/bgs5_firmware
telit/ehs5_firmware
telit/ehs6_firmware
telit/ehs8_firmware
telit/els61_firmware
telit/els81_firmware
telit/pds5_firmware
telit/pds6_firmware
telit/pds8_firmware
telit/pls62_firmware
Published
Nov 09, 2023
Tracked Since
Feb 18, 2026