Vulnerabilities > Digitalcomtech > Syrus 4G IOT Telematics Gateway Firmware > Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2023-11-21	CVE-2023-6248	Unspecified vulnerability in Digitalcomtech Syrus 4G IOT Telematics Gateway Firmware Apex23.43.2 The Syrus4 IoT gateway utilizes an unsecured MQTT server to download and execute arbitrary commands, allowing a remote unauthenticated attacker to execute code on any Syrus4 device connected to the cloud service. network low complexity digitalcomtech critical	9.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.