These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
Motorola Solutions Vigilant Fixed LPR Coms Box (BCAV1F2-C600) devices through firmware version 3.1.171.9 store credentials in log files with insufficient protection, allowing decoding via open source tools. CISA published advisory ICSA-24-165-19 on June 13, 2024. Motorola Solutions has remediated this vulnerability for all affected systems; no customer action is required.
Motorola Solutions Vigilant Fixed LPR Coms Box (BCAV1F2-C600) devices running firmware version 3.1.171.9 and earlier logged transmitted data between the device and backend service. An attacker with access to these logs could perform replay attacks to replicate authenticated calls. This vulnerability was assigned CVSS 3.1 score 8.8 (HIGH severity). Motorola Solutions has already remediated this vulnerabili [truncated]
Motorola Solutions Vigilant Fixed LPR Coms Box (BCAV1F2-C600) devices store sensitive customer information without encryption, exposing data to physical-access attackers. The vulnerability affects firmware version 3.1.171.9 and earlier. CISA published advisory ICSA-24-165-19 on June 13, 2024, with a CVSS 3.1 score of 4.6 (MEDIUM). Motorola Solutions has already remediated this vulnerability for all affect [truncated]
CVE-2024-38282 is a high-severity vulnerability in Motorola Solutions Vigilant Fixed LPR Coms Box (BCAV1F2-C600) license plate readers, published June 13, 2024. The issue stems from hardcoded default credentials that allow an attacker with local access to authenticate to the camera's operating system, potentially enabling operational changes or system shutdown requiring physical reboot. The vulnerability [truncated]
CVE-2024-38281 is a high-severity vulnerability (CVSS 8.0) affecting Motorola Solutions Vigilant Fixed LPR Coms Box (BCAV1F2-C600) devices running firmware version 3.1.171.9 and earlier. The vulnerability, published on June 13, 2024, involves hard-coded credentials for a hidden wireless network that could allow an attacker to access the device's maintenance console. The attack vector requires adjacent net [truncated]
Motorola Solutions Vigilant Fixed LPR Coms Box (BCAV1F2-C600) stores sensitive data, including credentials, in clear text on the hard disk. An unauthorized user with physical access can retrieve the hard disk and gain access to this sensitive data. The vulnerability affects devices running firmware version 3.1.171.9 and earlier. Motorola Solutions has addressed this by implementing full disk encryption us [truncated]
A medium-severity vulnerability in Motorola Solutions Vigilant Fixed LPR Coms Box (BCAV1F2-C600) allows attackers with physical access to modify the bootloader using custom arguments, bypassing authentication to access the file system and obtain password hashes. The vulnerability requires physical access to the device, limiting its exploitability but granting high confidentiality impact when exploited.