CVE-2023-43271

CVSS 3.1 Score 9.1 of 10 (high)

Details

Published Oct 9, 2023
Updated: Oct 16, 2023
CWE ID 306

Summary

CVE-2023-43271 is a cyber vulnerability that affects the 70mai a500s v1.2.119 driving recorder. It is categorized as a critical vulnerability with a base score of 9.1. The vulnerability allows attackers to directly access and delete video files of the driving recorder through FTP and other protocols due to incorrect access control. The impact of this vulnerability is high in terms of integrity and confidentiality, with no privileges required and no user interaction needed for exploitation. The attack vector is through the network, and the availability impact is none. Organizations using the affected product should remediate this vulnerability immediately to prevent unauthorized access and potential loss or manipulation of video files from the driving recorder.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-43271 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options