08 November 2023

KLCERT-22-211: Telit Cinterion (Thales/Gemalto) modules. Relative Path Traversal

Vendor

Telit Cinterion

Researchers

Sergey Anufrienko, Vulnerability Research Group Manager, Kaspersky ICS CERT

Alexander Kozlov, Kaspersky

Timeline

Timeline

  • Kaspersky ICS CERT advisory published

    08 November 2023

  • Vulnerability reported

    February 2023

Description

A CWE-23: Relative Path Traversal vulnerability exists in Telit Cinterion BGS5, Telit Cinterion EHS5/6/8, Telit Cinterion PDS5/6/8, Telit Cinterion ELS61/81, Telit Cinterion PLS62 that could allow a local, low privileged attacker to escape from virtual directories and get read/write access to protected files on the targeted system.


Exploitability

Locally

Attack complexity

Low

User interaction

None

Confidentiality

Low

Integrity

Low

Availability

None

Impact

Successful exploitation of this vulnerability could allow a local, low privileged attacker to escape from virtual directories and get read/write access to protected files on the targeted system.

Affected products

The following Telit products:

  • Telit Cinterion BGS5 (All versions)
  • Telit Cinterion EHS5/6/8 (All versions)
  • Telit Cinterion PDS5/6/8 (All versions)
  • Telit Cinterion ELS61/81 (All versions)
  • Telit Cinterion PLS62 (All versions).

Mitigation

Kaspersky ICS CERT mitigation

  • Enforce application signature verification to prohibit the installation of untrusted MIDlets on the device;
  • Control physical access to the device at all stages of transportation to protect against the embedding of backdoors.

Kaspersky publishes information on newly identified vulnerabilities in order to raise user awareness of the IT security threats detected. Kaspersky does not make any guarantees with respect to information received from vendors of products in which vulnerabilities have been identified, which is included in the following sections of the advisory: Affected Products, Vendor Mitigation.

Timeline

  • Kaspersky ICS CERT advisory published

    08 November 2023

  • Vulnerability reported

    February 2023