Vulnerabilities > CVE-2023-49610 - Unspecified vulnerability in Machinesense Feverwarn Firmware

CVSS 8.1 - HIGH

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

HIGH

low complexity

machinesense

NVD

Published: 2024-02-01

Updated: 2024-05-17

Summary

MachineSense FeverWarn Raspberry Pi-based devices lack input sanitization, which could allow an attacker on an adjacent network to send a message running commands or could overflow the stack.

Vulnerable Configurations

Part	Description	Count
OS	Machinesense Machinesense Feverwarn Firmware -	1
Hardware	Machinesense Machinesense Feverwarn -	1

References

https://www.cisa.gov/news-events/ics-advisories/icsa-24-025-01
https://machinesense.com/pages/about-machinesense