all InfoSec news
CVE-2023-3028 (mqtt)
June 1, 2023, 6:15 a.m. |
National Vulnerability Database web.nvd.nist.gov
Multiple vulnerabilities were identified:
- The MQTT backend does not require authentication, allowing unauthorized connections from an attacker.
- The vehicles publish their telemetry data (e.g. GPS Location, speed, odometer, fuel, etc) as messages in public topics. The backend also sends commands to the …
access authentication backend connections cve data fleet mqtt telematics telemetry vehicles vulnerabilities
More from web.nvd.nist.gov / National Vulnerability Database
CVE-2023-45955 (lightstrip_firmware)
5 months, 3 weeks ago |
web.nvd.nist.gov
CVE-2023-21380 (android)
5 months, 3 weeks ago |
web.nvd.nist.gov
CVE-2023-21381 (android)
5 months, 3 weeks ago |
web.nvd.nist.gov
CVE-2023-21385 (android)
5 months, 3 weeks ago |
web.nvd.nist.gov
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Open-Source Intelligence (OSINT) Policy Analyst (TS/SCI)
@ WWC Global | Reston, Virginia, United States
Security Architect (DevSecOps)
@ EUROPEAN DYNAMICS | Brussels, Brussels, Belgium
Infrastructure Security Architect
@ Ørsted | Kuala Lumpur, MY
Contract Penetration Tester
@ Evolve Security | United States - Remote
Senior Penetration Tester
@ DigitalOcean | Canada