First published: Wed Dec 11 2019(Updated: )
Blink XT2 Sync Module firmware prior to 2.13.11 allows remote attackers to execute arbitrary code and commands on the device due to insufficient UART protections.
Credit: vulnreport@tenable.com
Affected Software | Affected Version | How to fix |
---|---|---|
Amazon Blink Xt2 Sync Module Firmware | <2.13.11 | |
Amazon Blink Xt2 Sync Module |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2019-3983 is a vulnerability in Blink XT2 Sync Module firmware that allows remote attackers to execute arbitrary code and commands on the device.
The severity of CVE-2019-3983 is high with a CVSS score of 6.8.
CVE-2019-3983 works by exploiting insufficient UART protections in the Blink XT2 Sync Module firmware.
To fix CVE-2019-3983, update the Blink XT2 Sync Module firmware to version 2.13.11 or later.
You can find more information about CVE-2019-3983 at the following link: [https://www.tenable.com/security/research/tra-2019-51](https://www.tenable.com/security/research/tra-2019-51)