Incorrect access control in the EEPROM component of Kapsch TrafficCom RIS-9160 & RIS-9260 Roadside Units (RSUs) v3.2.0.829.23, v3.8.0.1119.42, and v4.6.0.1211.28 allows attackers to replace password hashes stored in the EEPROM with hashes of their own, leading to the escalation of privileges to root.
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HKapsch Ris 9160
HWKapschwszystkie wersjeKapsch Ris 9160 Firmware
OSKapsch3.2.0.829.233.8.0.1119.424.6.0.1211.28Kapsch Ris 9260
HWKapschwszystkie wersjeKapsch Ris 9260 Firmware
OSKapsch3.2.0.829.233.8.0.1119.424.6.0.1211.28
Related vulnerabilities
Kapsch TrafficCom RIS-9160 & RIS-9260 Roadside Units (RSUs) v3.2.0.829.23, v3.8.0.1119.42, and v4.6.0.1211.28 ...
Kapsch TrafficCom RIS-9160 & RIS-9260 Roadside Units (RSUs) v3.2.0.829.23, v3.8.0.1119.42, and v4.6.0.1211.28 ...
Kapsch TrafficCom RIS-9260 RSU LEO v3.2.0.829.23, v3.8.0.1119.42, and v4.6.0.1211.28 were discovered to contai...
Kapsch TrafficCom RIS-9160 & RIS-9260 Roadside Units (RSUs) v3.2.0.829.23, v3.8.0.1119.42, and v4.6.0.1211.28 ...
Nieprawidłowa kontrola dostępu w pamięci SPI Flash urządzeń przydrożnych Kapsch TrafficCom RIS-9160 i RIS-9260...