GCVE - cpe:2.3:o:telit:ehs8_firmware:-:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:telit:ehs8_firmware:-:*:*:*:*:*:*:*

part: o version: - update: *

Vendor	Telit (`b372c2ff-e5bb-5e3d-a44e-05bd1a3962ae`)
Product	Ehs8 Firmware (`754e32ec-6410-5502-abdc-33a0ae0e8182`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2023-47616`	vulnerable	2026-06-03 14:53:17.799991	Details available LOW (2.4) A CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists in Telit Cinterion BGS5, Telit Cinterion EHS5/6/8, Telit Cinterion PDS5/6/8, Telit Cinterion ELS61/81, Telit Cinterion PLS62 that could allow an attacker with physical access to the target system to get access to a sensitive data on the targeted system. Published: 2023-11-09T12:24:33.382Z Updated: 2024-09-03T19:34:41.779Z Open on db.gcve.eu Reference links https://ics-cert.kaspersky.com/advisories/2023/11/09/klcert-22-193-telit-cinterion-thales-gemalto-modules-exposure-of-sensitive-information-to-an-unauthorized-actor/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-47615`	vulnerable	2026-06-03 14:53:17.798829	Details available LOW (3.3) A CWE-526: Exposure of Sensitive Information Through Environmental Variables vulnerability exists in Telit Cinterion BGS5, Telit Cinterion EHS5/6/8, Telit Cinterion PDS5/6/8, Telit Cinterion ELS61/81, Telit Cinterion PLS62 that could allow a local, low privileged attacker to get access to a sensitive data on the targeted system. Published: 2023-11-09T12:47:43.253Z Updated: 2024-09-03T19:34:27.651Z Open on db.gcve.eu Reference links https://ics-cert.kaspersky.com/advisories/2023/11/09/klcert-22-212-telit-cinterion-thales-gemalto-modules-exposure-of-sensitive-information-through-environmental-variables/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-47614`	vulnerable	2026-06-03 14:53:17.797584	Details available LOW (3.3) A CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists in Telit Cinterion BGS5, Telit Cinterion EHS5/6/8, Telit Cinterion PDS5/6/8, Telit Cinterion ELS61/81, Telit Cinterion PLS62 that could allow a local, low privileged attacker to disclose hidden virtual paths and file names on the targeted system. Published: 2023-11-10T15:50:24.884Z Updated: 2024-09-03T17:37:01.547Z Open on db.gcve.eu Reference links https://ics-cert.kaspersky.com/advisories/2023/11/08/klcert-22-210-telit-cinterion-thales-gemalto-modules-exposure-of-sensitive-information-to-an-unauthorized-actor-vulnerability/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-47613`	vulnerable	2026-06-03 14:53:17.795474	Details available MEDIUM (4.4) A CWE-23: Relative Path Traversal vulnerability exists in Telit Cinterion BGS5, Telit Cinterion EHS5/6/8, Telit Cinterion PDS5/6/8, Telit Cinterion ELS61/81, Telit Cinterion PLS62 that could allow a local, low privileged attacker to escape from virtual directories and get read/write access to protected files on the targeted system. Published: 2023-11-09T06:32:08.024Z Updated: 2024-09-03T19:34:58.071Z Open on db.gcve.eu Reference links https://ics-cert.kaspersky.com/advisories/2023/11/08/klcert-22-211-telit-cinterion-thales-gemalto-modules-relative-path-traversal/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-47612`	vulnerable	2026-06-03 14:53:17.794302	Details available MEDIUM (6.8) A CWE-552: Files or Directories Accessible to External Parties vulnerability exists in Telit Cinterion BGS5, Telit Cinterion EHS5/6/8, Telit Cinterion PDS5/6/8, Telit Cinterion ELS61/81, Telit Cinterion PLS62 that could allow an attacker with physical access to the target system to obtain a read/write access to any files and directories on the targeted system, including hidden files and directories. Published: 2023-11-09T12:07:54.815Z Updated: 2024-09-04T13:47:01.811Z Open on db.gcve.eu Reference links https://ics-cert.kaspersky.com/advisories/2023/11/08/klcert-22-194-telit-cinterion-thales-gemalto-modules-files-or-directories-accessible-to-external-parties-vulnerability/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-47611`	vulnerable	2026-06-03 14:53:17.785027	Details available HIGH (7.8) A CWE-269: Improper Privilege Management vulnerability exists in Telit Cinterion BGS5, Telit Cinterion EHS5/6/8, Telit Cinterion PDS5/6/8, Telit Cinterion ELS61/81, Telit Cinterion PLS62 that could allow a local, low privileged attacker to elevate privileges to "manufacturer" level on the targeted system. Published: 2023-11-10T16:38:54.668Z Updated: 2024-08-02T21:09:37.384Z Open on db.gcve.eu Reference links https://ics-cert.kaspersky.com/advisories/2023/11/08/klcert-22-216-telit-cinterion-thales-gemalto-modules-improper-privilege-management-vulnerability/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-47610`	vulnerable	2026-06-03 14:53:17.739490	Details available HIGH (8.1) A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists in Telit Cinterion EHS5/6/8 that could allow a remote unauthenticated attacker to execute arbitrary code on the targeted system by sending a specially crafted SMS message. Published: 2023-11-09T17:05:38.207Z Updated: 2025-02-27T20:34:06.677Z Open on db.gcve.eu Reference links https://ics-cert.kaspersky.com/advisories/2023/11/08/klcert-23-018-telit-cinterion-thales-gemalto-modules-buffer-copy-without-checking-size-of-input-vulnerability/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.