CVE-2023-45594 Information

Description

A CWE-552 “Files or Directories Accessible to External Parties” vulnerability in the embedded Chromium browser allows a physical attacker to arbitrarily download/upload files to/from the file system with unspecified impacts to the confidentiality integrity and availability of the device. This issue affects: AiLux imx6 bundle below version imx6_1.0.7-2.

Reference

https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2023-45594