How severe is CVE-2024-54982?

The severity of CVE-2024-54982 has not been assessed with CVSS v3.

CVE-2024-54982

NONE

An issue in Quectel BC25 with firmware version BC25PAR01A06 allows attackers to bypass authentication via a crafted NAS message. NOTE: Quectel disputes this because the issue is in the chipset supply

Published: 12/19/2024Updated: 1/16/2025

Description

An issue in Quectel BC25 with firmware version BC25PAR01A06 allows attackers to bypass authentication via a crafted NAS message. NOTE: Quectel disputes this because the issue is in the chipset supply chain and is not localized to one or more Quectel products.

AI AnalysisPowered by AI

References

https://github.com/haroldfeng/nbiot-va/blob/master/Quectel_BC25_Subscriber_Auth_Bypass.md