PatchSiren cyber security CVE debrief
CVE-2024-38281 Motorola Solutions CVE debrief
CVE-2024-38281 is a high-severity vulnerability (CVSS 8.0) affecting Motorola Solutions Vigilant Fixed LPR Coms Box (BCAV1F2-C600) devices running firmware version 3.1.171.9 and earlier. The vulnerability, published on June 13, 2024, involves hard-coded credentials for a hidden wireless network that could allow an attacker to access the device's maintenance console. The attack vector requires adjacent network access with low attack complexity and low privileges, but no user interaction. Successful exploitation could result in high impact to confidentiality, integrity, and availability of the affected system. Motorola Solutions has already remediated this vulnerability for all vulnerable systems, requiring no further customer action. For organizations with similar devices, recommended mitigations include removing hard-coded credentials, disabling wireless access points when not needed, and ensuring unique SSIDs and passwords are configured when wireless access is required.
- Vendor
- Motorola Solutions
- Product
- Vigilant Fixed LPR Coms Box (BCAV1F2-C600)
- CVSS
- HIGH 8
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2024-06-13
- Original CVE updated
- 2024-06-13
- Advisory published
- 2024-06-13
- Advisory updated
- 2024-06-13
Who should care
Organizations operating Motorola Solutions Vigilant license plate reader systems, critical infrastructure security teams, transportation and law enforcement agencies using automated license plate recognition technology, and ICS security practitioners responsible for securing edge devices with wireless maintenance interfaces.
Technical summary
The vulnerability exists in the Vigilant Fixed LPR Coms Box (BCAV1F2-C600) where hard-coded credentials for a hidden wireless network could allow unauthorized access to the maintenance console. The attack requires adjacent network access (AV:A) with low complexity and low privileges. Motorola Solutions has remediated all affected systems.
Defensive priority
HIGH
Recommended defensive actions
- Verify no Motorola Solutions Vigilant Fixed LPR Coms Box devices remain on firmware version 3.1.171.9 or earlier
- Audit wireless network configurations on all deployed license plate reader systems for hidden access points with default or hard-coded credentials
- Disable wireless access points on critical infrastructure devices when not operationally required
- Implement unique, strong passwords and SSIDs for any necessary wireless maintenance access
- Review CISA ICS recommended practices for securing industrial control systems
- Monitor for unauthorized wireless network activity in proximity to license plate reader deployments
Evidence notes
Vulnerability disclosed in CISA ICS Advisory ICSA-24-165-19. Affected product confirmed as Motorola Solutions Vigilant Fixed LPR Coms Box (BCAV1F2-C600) firmware version 3.1.171.9 and earlier. CVSS 3.1 vector: AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. Vendor has completed remediation for all vulnerable systems.
Official resources
-
CVE-2024-38281 CVE record
CVE.org
-
CVE-2024-38281 NVD detail
NVD
-
Source item URL
cisa_csaf
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
2024-06-13