CVE-2024-22186

🗓️ 18 Apr 2024 22:08:17Reported by icscertType

cve🔗 web.nvd.nist.gov👁 63 Views🌐 WEB

Privilege escalation vulnerability in application

Reporter	Title	Published	Views	Family All 9
CNNVD	Electrolink FM/DAB/TV Transmitter 安全漏洞	18 Apr 202400:00	–	cnnvd
Cvelist	CVE-2024-22186 Electrolink FM/DAB/TV Transmitter Reliance on Cookies without Validation and Integrity Checking	18 Apr 202422:08	–	cvelist
EUVD	EUVD-2024-19782	3 Oct 202520:07	–	euvd
ICS	Electrolink FM/DAB/TV Transmitter	16 Apr 202406:00	–	ics
NVD	CVE-2024-22186	18 Apr 202423:15	–	nvd
Positive Technologies	PT-2024-19262 · Electrolink · Compact Dab Transmitter +6	18 Apr 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-22186	4 Feb 202523:49	–	redhatcve
Vulnrichment	CVE-2024-22186 Electrolink FM/DAB/TV Transmitter Reliance on Cookies without Validation and Integrity Checking	18 Apr 202422:08	–	vulnrichment
Zero Science Lab	Electrolink FM/DAB/TV Transmitter Vertical Privilege Escalation	30 Sep 202300:00	–	zeroscience

Vulners

Vulnrichment

Node

electrolink compact_dab_transmitterMatch10w

electrolink compact_dab_transmitterMatch100w

electrolink compact_dab_transmitterMatch250w

electrolink medium_dab_transmitterMatch500w

electrolink medium_dab_transmitterMatch1kw

electrolink medium_dab_transmitterMatch2kw

electrolink high_power_dab_transmitterMatch2.5kw

electrolink high_power_dab_transmitterMatch3kw

electrolink high_power_dab_transmitterMatch4kw

electrolink high_power_dab_transmitterMatch5kw

electrolink compact_fm_transmitter

electrolink modular_fm_transmitterMatch3kw

electrolink modular_fm_transmitterMatch5kw

electrolink modular_fm_transmitterMatch10kw

electrolink modular_fm_transmitterMatch15kw

electrolink modular_fm_transmitterMatch20kw

electrolink modular_fm_transmitterMatch30kw

electrolink digital_fm_transmitterRange≤40kw

electrolink vhf_tv_transmitter

electrolink uhf_tv_transmitterRange≤5kw

[
  {
    "defaultStatus": "unaffected",
    "product": "Compact DAB Transmitter",
    "vendor": "Electrolink",
    "versions": [
      {
        "status": "affected",
        "version": "10W"
      },
      {
        "status": "affected",
        "version": "100W"
      },
      {
        "status": "affected",
        "version": "250W"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Medium DAB Transmitter",
    "vendor": "Electrolink",
    "versions": [
      {
        "status": "affected",
        "version": "500W"
      },
      {
        "status": "affected",
        "version": "1kW"
      },
      {
        "status": "affected",
        "version": "2kW"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "High Power DAB Transmitter",
    "vendor": "Electrolink",
    "versions": [
      {
        "status": "affected",
        "version": "2.5kW"
      },
      {
        "status": "affected",
        "version": "3kW"
      },
      {
        "status": "affected",
        "version": "4kW"
      },
      {
        "status": "affected",
        "version": "5kW"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Compact FM Transmitter",
    "vendor": "Electrolink",
    "versions": [
      {
        "status": "affected",
        "version": "Compact FM Transmitter"
      },
      {
        "status": "affected",
        "version": "500W"
      },
      {
        "status": "affected",
        "version": "1kW"
      },
      {
        "status": "affected",
        "version": "2kW"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Modular FM Transmitter",
    "vendor": "Electrolink",
    "versions": [
      {
        "status": "affected",
        "version": "3kW"
      },
      {
        "status": "affected",
        "version": "5kW"
      },
      {
        "status": "affected",
        "version": "10kW"
      },
      {
        "status": "affected",
        "version": "15kW"
      },
      {
        "status": "affected",
        "version": "20kW"
      },
      {
        "status": "affected",
        "version": "30kW"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Digital FM Transmitter",
    "vendor": "Electrolink",
    "versions": [
      {
        "lessThanOrEqual": "40kW",
        "status": "affected",
        "version": "15W",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "VHF TV Transmitter",
    "vendor": "Electrolink",
    "versions": [
      {
        "status": "affected",
        "version": "BI"
      },
      {
        "status": "affected",
        "version": "BIII"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "UHF TV Transmitter",
    "vendor": "Electrolink",
    "versions": [
      {
        "lessThanOrEqual": "5kW",
        "status": "affected",
        "version": "10W",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
cisa	www.cisa.gov/news-events/ics-advisories/icsa-24-107-02

Parameter	Position	Path	Description	CWE
Cookie	header	192.168.150.77:8888/mail.htm	Privilege escalation via cookie manipulation to elevate from GUEST to ADMIN (or ZSL) by altering the Login value in the Cookie header.	CWE-565
Login	header	192.168.150.77:8888/mail.htm	Privilege escalation via cookie manipulation to elevate from GUEST to ADMIN (or ZSL) by altering the Login value in the Cookie header.	CWE-565
ADMIN	header	192.168.150.77:8888/mail.htm	Privilege escalation via cookie manipulation to elevate from GUEST to ADMIN (or ZSL) by altering the Login value in the Cookie header.	CWE-565
GUEST	header	192.168.150.77:8888/mail.htm	Privilege escalation via cookie manipulation to elevate from GUEST to ADMIN (or ZSL) by altering the Login value in the Cookie header.	CWE-565

17 Jun 2026 07:10Current

7.2High risk

Vulners AI Score7.2

CVSS 48.7

CVSS 3.18.8

EPSS0.00549

SSVC

CWE-565