CVE-2023-30024 Information

Description

Insecure Permissions vulnerability found in MagicJack A921 USB Phone Jack Rev 3.0 v.1.4 allows a physically proximate attacker to escalate privileges and gain access to sensitive information via the NAND flash memory.

Reference

https://www.magicjack.com/ https://samuraisecurity.co.uk/red-teaming-0x01-click-rce-via-voip-usb/ https://drive.google.com/drive/folders/1cKd8hksThK610GPtBQ3du8DEkwKywlAi?usp=sharing https://pastebin.com/raw/irWcawp8