Vulnerabilities > CVE-2024-3109

CVSS 6.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

LOW

network

low complexity

NVD

Published: 2024-05-03

Updated: 2024-05-03

Summary

A hard-coded AES key vulnerability was reported in the Motorola GuideMe application, along with a lack of URI sanitation, could allow for a local attacker to read arbitrary files.

References

https://en-us.support.motorola.com/app/answers/detail/a_id/178863

Vulnerabilities > CVE-2024-3109 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2024-3109"}]}

Summary

References

Vulnerabilities > CVE-2024-3109