← back
CVE-2022-43096

CVE-2022-43096

CVSS 6.8 MEDIUMEPSS 0.5%CWE-1191
In short

The Mediatrix 4102 device has a physical security flaw that allows someone with physical access to the UART port to gain full root control of the system. This is dangerous because it bypasses all software security protections.

Technical detail

Mediatrix 4102 devices prior to v48.5.2718 expose an unauthenticated UART interface that permits local attackers with physical access to execute arbitrary commands with root privileges. The attack vector requires direct hardware access to the UART port and results in complete system compromise.

Summary generated and translated by AI from the official description.
Mediatrix 4102 before v48.5.2718 allows local attackers to gain root access via the UART port.
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://documentation.media5corp.com/display/MP/DGW+Security+Improvement+Notes+v48.5.2718https://github.com/ProxyStaffy/Mediatrix-CVE-2022-43096