Vulnerabilities > CVE-2024-22028 - Unspecified vulnerability in 3Rrr-Btob products

CVSS 4.6 - MEDIUM

Attack vector

PHYSICAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

low complexity

3rrr-btob

NVD

Published: 2024-01-15

Updated: 2024-01-22

Summary

Insufficient technical documentation issue exists in thermal camera TMC series all firmware versions. The user of the affected product is not aware of the internally saved data. By accessing the affected product physically, an attacker may retrieve the internal data.

Vulnerable Configurations

Part	Description	Count
OS	3Rrr-Btob 3Rrr Btob 3R Tmc01 Firmware * 3Rrr Btob 3R Tmc02 Firmware * 3Rrr Btob 3R Tmc03 Firmware * 3Rrr Btob 3R Tmc04 Firmware * 3Rrr Btob 3R Tmc05 Firmware * 3Rrr Btob 3R Tmc06 Firmware *	6
Hardware	3Rrr-Btob 3Rrr Btob 3R Tmc01 - 3Rrr Btob 3R Tmc02 - 3Rrr Btob 3R Tmc03 - 3Rrr Btob 3R Tmc04 - 3Rrr Btob 3R Tmc05 - 3Rrr Btob 3R Tmc06 -	6

References

https://3rrr-btob.jp/archives/news/23624
https://jvn.jp/en/jp/JVN96240417/