Vulnerabilities > CVE-2023-34724 - Incorrect Authorization vulnerability in Jaycar La5570 Firmware 1.0.19T53

CVSS 6.8 - MEDIUM

Attack vector

PHYSICAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

low complexity

jaycar

CWE-863

NVD

Published: 2023-08-28

Updated: 2023-09-08

Summary

An issue was discovered in TECHView LA5570 Wireless Gateway 1.0.19_T53, allows physical attackers to gain escalated privileges via the UART interface.

Vulnerable Configurations

Part	Description	Count
OS	Jaycar Jaycar La5570 Firmware 1.0.19_T53	1
Hardware	Jaycar Jaycar La5570 -	1

Common Weakness Enumeration (CWE)

CWE-863 - Incorrect Authorization

References

https://www.jaycar.com.au/wireless-gateway-home-automation-controller/p/LA5570
https://www.exploitsecurity.io/post/cve-2023-34723-cve-2023-34724-cve-2023-34725
http://packetstormsecurity.com/files/174553/TECHView-LA5570-Wireless-Gateway-1.0.19_T53-Traversal-Privilege-Escalation.html