Potential Impact: Privilege escalation
Severity: High
Scope of Impact: Motorola specific
CVE Identifier: CVE-2021-3460
Description:
The Motorola MH702x devices do not properly verify the server certificate during communication with the support server which could lead to the communication channel being accessible by an attacker.
Mitigation Strategy for Customers (what you should do to protect yourself):
Update Motorola MH702x devices to firmware version 2.0.0.301. Note: Devices automatically update when devices are connected to the internet.
Revision History:Revision | Date | Description |
---|---|---|
1 | 2021-04-13 | Initial release |