CVE-2021-3460
First published: Tue Apr 13 2021(Updated: )
The Motorola MH702x devices, prior to version 2.0.0.301, do not properly verify the server certificate during communication with the support server which could lead to the communication channel being accessible by an attacker.
Credit: psirt@lenovo.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Motorola Mh702x Firmware | <2.0.0.301 | |
| Motorola MH702x |
Remedy
Update Motorola MH702x devices to firmware version 2.0.0.301.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2021-3460?
CVE-2021-3460 is a vulnerability that affects Motorola MH702x devices prior to version 2.0.0.301. It allows an attacker to access the communication channel by exploiting a lack of proper server certificate verification.
How severe is CVE-2021-3460?
CVE-2021-3460 has a severity rating of 9.8 out of 10, which is classified as critical.
How can I fix CVE-2021-3460?
To fix CVE-2021-3460, you should update your Motorola MH702x device to version 2.0.0.301 or later.
Where can I find more information about CVE-2021-3460?
You can find more information about CVE-2021-3460 on the Motorola Mentor website: https://motorolamentor.zendesk.com/hc/en-us/articles/1260804087249
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/severity
- agent/last-modified-date
- agent/references
- agent/weakness
- agent/remedy
- agent/description
- agent/first-publish-date
- agent/tags
- agent/event
- vendor/motorola
- canonical/motorola mh702x firmware
- canonical/motorola mh702x