CVE-2024-38279

Summary

The affected product is vulnerable to an attacker modifying the bootloader by using custom arguments to bypass authentication and gain access to the file system and obtain password hashes.

Affected Software

VendorProductVersion RangeStatus
Motorola SolutionsVigilant Fixed LPR Coms Box (BCAV1F2-C600)0 <= 3.1.171.9affected

Weaknesses

  • CWE-288: CWE-288 Authentication Bypass Using an Alternate Path or Channel

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References