CVE-2023-24215: Incorrect access control in the /uci/get/ endpoint of NOVUS AirGate 4G firmware v1.1.16 allows unauthentica...
Incorrect access control in the /uci/get/ endpoint of NOVUS AirGate 4G firmware v1.1.16 allows unauthenticated attackers to obtain administrator credentials via a crafted POST request.
Security readout for executives and security teams
Plain-English summary
CVE-2023-24215 affects NOVUS AirGate 4G firmware v1.1.16. An unauthenticated network attacker can reportedly retrieve administrator credentials from a management endpoint. For organizations using these cellular gateways, this creates a serious risk of device takeover and downstream network access.
Executive priority
Treat as urgent for any deployed NOVUS AirGate 4G v1.1.16 device. Prioritize internet-exposed or remotely managed gateways because credential exposure can enable device control and network pivot risk.
Technical view
The CVE describes incorrect access control, CWE-284, in the /uci/get/ endpoint. The reported impact is unauthenticated disclosure of administrator credentials via a crafted POST request. CVSS 3.1 is 9.1: network exploitable, low complexity, no privileges, no user interaction, with high confidentiality and integrity impact.
Likely exposure
Exposure is most relevant where NOVUS AirGate 4G devices running firmware v1.1.16 have reachable management interfaces, especially from untrusted networks. The source bundle does not identify other affected versions or CPEs.
Exploitation context
No CISA KEV listing is provided, and the supplied sources do not state active exploitation. Public disclosure exists, and the vulnerability requires no authentication, so exposed devices should be treated as high-priority targets.
Researcher notes
The CVE record provides strong severity and impact indicators, but affected-product metadata is sparse. The only named affected version in the supplied data is firmware v1.1.16. Do not assume broader version impact without vendor confirmation.
Mitigation direction
Check NOVUS vendor guidance for fixed firmware or official mitigations.
Remove management access from the public internet and untrusted networks.
Restrict administration to VPN or trusted management networks.
Rotate device administrator credentials after mitigation or firmware update.
Review gateway logs for unexpected administrative access or configuration changes.
Validation and detection
Inventory NOVUS AirGate 4G devices and record firmware versions.
Identify any devices running firmware v1.1.16.
Confirm whether management interfaces are reachable from untrusted networks.
Check vendor advisories for patched versions or compensating controls.
Review access logs for suspicious unauthenticated or administrative activity.
Generated from the cited source records. This long-tail analysis has not been individually reviewed by a named human.
Potential ATT&CK relevance
Conservative CVE-to-ATT&CK context
These mappings and lookup hints may be relevant to the vulnerability behavior, CWE, affected product, or exposure path. Glexia-inferred context is not an official MITRE, ATT&CK, CWE, or CVE Program mapping.
ATT&CK lookup starting points
Use these exact CWE pages and searches to review the Glexia ATT&CK library from this CVE's weakness and description context.
cwe · medium confidence lookup
CWE-284: Authorization and privilege behavior lookup
Authorization weaknesses can support privilege escalation and valid-account review, depending on exploit path. Open the exact CWE lookup page first, then review the ATT&CK searches from that MITRE weakness context. This is a Glexia lookup hint, not an official ATT&CK mapping.
These fields come from the CVE record and ADP containers, not from Glexia's Take. They preserve time-varying source decisions such as CISA SSVC, KEV status, CVSS metrics, and provider references.
1CVSS vectors
3Timeline events
1ADP providers
2Source links
SSVC decision data
CISA-ADPCISA Coordinator
Timestamp
Version
2.0.3
Exploitation: noneAutomatable: yesTechnical Impact: total
CVSS vector scores
1 official score
We collect every scored CVSS vector available in the official CNA and ADP containers. When more than one version is present, the table keeps the source vectors side by side instead of collapsing them into the highest score.