Vulnerabilities > CVE-2023-3786 - Unspecified vulnerability in Aures Komet Firmware 20230509

CVSS 6.8 - MEDIUM

Attack vector

PHYSICAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

low complexity

aures

NVD

Published: 2023-07-20

Updated: 2024-05-17

Summary

A vulnerability classified as problematic has been found in Aures Komet up to 20230509. This affects an unknown part of the component Kiosk Mode. The manipulation leads to improper access controls. It is possible to launch the attack on the physical device. The exploit has been disclosed to the public and may be used. The identifier VDB-235053 was assigned to this vulnerability.

Vulnerable Configurations

Part	Description	Count
OS	Aures Aures Komet Firmware - Aures Komet Firmware 20230509	2
Hardware	Aures Aures Komet -	1

References

https://seclists.org/fulldisclosure/2023/Jul/40
https://vuldb.com/?ctiid.235053
https://vuldb.com/?id.235053
https://www.vulnerability-lab.com/get_content.php?id=2323