{"vulnerability": "CVE-2023-31190", "sightings": [{"uuid": "d4e9496b-cca3-4d0d-856b-9e5837fdfb6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31190", "type": "seen", "source": "https://t.me/Rootsec_2/385", "content": "\ud83d\udce1Nozomi Networks Discovers Three Vulnerabilities Affecting BlueMark DroneScout ds230 Remote ID Receiver \n\"In this blog post, we disclose three vulnerabilities (critical, high and medium risk) which affect the DroneScout ds230 device. Two of these vulnerabilities(CVE-2023-31191 & CVE-2023-29156) could allow an attacker to spoof Remote ID information forcing the DroneScout ds230 to drop Remote ID information transmitted by legitimately communicating drones. The consequence of this is the attacker being able to inject fake locations associated with the legitimate drones detected by the DroneScout. The third vulnerability(CVE-2023-31190) discovered demonstrates the capability to install malicious firmware updates on the DroneScout appliance. \"\n\n#ODID #expoitation #fw #DroneScout #Drone #UAV #UAS", "creation_timestamp": "2024-08-16T08:08:28.000000Z"}, {"uuid": "f22238c6-c54f-455c-b239-0c12089d01e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31190", "type": "seen", "source": "https://t.me/cibsecurity/66329", "content": "\u203c CVE-2023-31190 \u203c\n\nDroneScout ds230 Remote ID receiver from BlueMark Innovations is affected by an\u00c2\u00a0Improper Authentication vulnerability during the firmware update procedure.Specifically, the firmware update procedure ignores and does not check the validity of the TLS certificate of the HTTPS endpoint from which the firmware update package (.tar.bz2 file) is downloaded.An attacker with the ability to put himself in a Man-in-the-Middle situation (e.g., DNS poisoning, ARP poisoning, control of a node on the route to the endpoint, etc.) can trick the DroneScout ds230 to install a crafted malicious firmware update containing arbitrary files (e.g., executable and configuration) and gain administrative (root) privileges on the underlying Linux operating system.This issue affects DroneScout ds230 firmware from version 20211210-1627 through 20230329-1042.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-11T12:42:44.000000Z"}]}