Authentication Bypass Vulnerability in Motorola MM1000 Device
CVE-2021-3458

6.1MEDIUM

Key Information:

Vendor: Motorola
Status: Mm1000 Moca Adapter
Vendor: CVE Published:; 17 August 2021

Summary

The Motorola MM1000 device features a configuration portal that can be accessed without proper authentication, presenting significant risks. This flaw allows unauthorized users to modify critical adapter settings, potentially impacting network integrity and security. It is crucial for users of the Motorola MM1000 to take immediate action to secure their devices and prevent unauthorized access.

Affected Version(s)

MM1000 MoCA Adapter <= 1.0.0.8

References

https://motorolamentor.zendesk.com/hc/en-us/articles/1260...

x_refsource_MISC

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Physical

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 17, 2021
Vulnerability Reserved
Mar 22, 2021

Credit

Motorola thanks Anthony V. DeRosa for reporting this issue.