CVE Daily

CVE-2019-20472

An issue was discovered on One2Track 2019-12-08 devices. Any SIM card used with ...

Medium CVSS 6.2

Overview

An issue was discovered on One2Track 2019-12-08 devices. Any SIM card used with the device cannot have a PIN configured. If a PIN is configured, the device simply produces a "Remove PIN and restart!" message, and cannot be used. This makes it easier for an attacker to use the SIM card by stealing the device.

CWE: N/A Published: 2024-11-07T21:15:05.610
Risk analysis

This vulnerability is rated 🟡 MEDIUM.

  • CVSS: 6.2 (MEDIUM)
  • Detected tags: none (tag impact: LOW)

Recommended actions:

  • Prioritize remediation based on business criticality and exposure.
  • Limit exposure and increase monitoring until fixed.

Recommended tools

Tags