Vulnerabilities > Motorola > High

DATE CVE VULNERABILITY TITLE RISK
2023-08-29 CVE-2023-23771 Use of Hard-coded Credentials vulnerability in Motorola Mbts Base Radio Firmware R05.X2.57
Motorola MBTS Base Radio accepts hard-coded backdoor password.
local
low complexity
motorola CWE-798
8.4
8.4
2023-08-29 CVE-2023-23772 Improper Verification of Cryptographic Signature vulnerability in Motorola Mbts Site Controller Firmware R05.32.58
Motorola MBTS Site Controller fails to check firmware update authenticity.
network
low complexity
motorola CWE-347
8.8
8.8
2023-08-29 CVE-2023-23773 Improper Verification of Cryptographic Signature vulnerability in Motorola Ebts Base Radio Firmware and Mbts Base Radio Firmware
Motorola EBTS/MBTS Base Radio fails to check firmware authenticity.
network
low complexity
motorola CWE-347
8.8
8.8
2023-08-29 CVE-2023-23774 Improper Handling of Exceptional Conditions vulnerability in Motorola products
Motorola EBTS/MBTS Site Controller drops to debug prompt on unhandled exception.
local
low complexity
motorola CWE-755
8.4
8.4
2023-05-11 CVE-2023-31528 Command Injection vulnerability in Motorola Cx2L Firmware 1.0.1
Motorola CX2L Router 1.0.1 was discovered to contain a command injection vulnerability via the staticroute_list parameter.
network
low complexity
motorola CWE-77
8.8
8.8
2023-05-11 CVE-2023-31529 Command Injection vulnerability in Motorola Cx2L Firmware 1.0.1
Motorola CX2L Router 1.0.1 was discovered to contain a command injection vulnerability via the system_time_timezone parameter.
network
low complexity
motorola CWE-77
8.8
8.8
2023-05-11 CVE-2023-31530 Command Injection vulnerability in Motorola Cx2L Firmware 1.0.1
Motorola CX2L Router 1.0.1 was discovered to contain a command injection vulnerability via the smartqos_priority_devices parameter.
network
low complexity
motorola CWE-77
8.8
8.8
2023-05-11 CVE-2023-31531 Command Injection vulnerability in Motorola Cx2L Firmware 1.0.1
Motorola CX2L Router 1.0.1 was discovered to contain a command injection vulnerability via the tomography_ping_number parameter.
network
low complexity
motorola CWE-77
8.8
8.8
2022-07-26 CVE-2022-30272 Insufficient Verification of Data Authenticity vulnerability in Motorola Ace1000 Firmware
The Motorola ACE1000 RTU through 2022-05-02 mishandles firmware integrity.
network
low complexity
motorola CWE-345
7.2
7.2
2022-07-26 CVE-2022-30276 Missing Authentication for Critical Function vulnerability in Motorola products
The Motorola MOSCAD and ACE line of RTUs through 2022-05-02 omit an authentication requirement.
network
low complexity
motorola CWE-306
7.5
7.5