ICSA-21-287-02 · Published 2021-10-14 · View on CISA ICS-CERT ↗

Uffizio GPS Tracker

CVSS 9.8 CRITICAL

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker with access to the host to view sensitive information, gain code execution, cause a redirection to an arbitrary external domain, and perform actions on behalf of an unsuspecting user.

CVEs (5)

CVE-2020-17483 CVE-2020-17485 CVE-2020-17484 CVE-2021-32927 CVE-2021-32929

Remediations

Uffizio is aware of these vulnerabilities and has not supplied any mitigations or workarounds. Contact Uffizio for more information.

Affected Vendors

Uffizio

Affected Products (1)

Uffizio · GPS Tracker vers:all/*

Affected Sectors

Transportation Systems

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more