Lucene search
K

103 matches found

0day.today
0day.today
added 2023/10/02 12:0 a.m.297 views

Electrolink FM/DAB/TV Transmitter (login.htm/mail.htm) Credential Disclosure Vulnerability

The Electrolink FM/DAB/TV Transmitter suffers from a disclosure of clear-text credentials in login.htm and mail.htm that can allow security bypass and system access. Electrolink FM/DAB/TV Transmitter login.htm/mail.htm Credentials Disclosure Vendor: Electrolink s.r.l. Product web page:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/10/02 12:0 a.m.290 views

Electrolink FM/DAB/TV Transmitter (controlloLogin.js) Credential Disclosure

Electrolink FM/DAB/TV Transmitter controlloLogin.js Credentials Disclosure Vendor: Electrolink s.r.l. Product web page: https://www.electrolink.com Affected version: 10W, 100W, 250W, Compact DAB Transmitter 500W, 1kW, 2kW Medium DAB Transmitter 2.5kW, 3kW, 4kW, 5kW High Power DAB Transmitter 100W...

7.1AI score
Exploits0
0day.today
0day.today
added 2023/10/02 12:0 a.m.328 views

Electrolink FM/DAB/TV Transmitter Unauthenticated Remote Denial Of Service Vulnerability

Electrolink FM/DAB/TV Transmitter from a denial of service scenario. An unauthenticated attacker can reset the board as well as stop the transmitter operations by sending one GET request to the command.cgi gateway. Electrolink FM/DAB/TV Transmitter Unauthenticated Remote DoS Vendor: Electrolink...

7AI score
Exploits0
0day.today
0day.today
added 2023/10/02 12:0 a.m.280 views

Electrolink FM/DAB/TV Transmitter Vertical Privilege Escalation Vulnerability

Electrolink FM/DAB/TV Transmitter suffers from a privilege escalation vulnerability. An attacker can escalate his privileges by poisoning the Cookie from GUEST to ADMIN to effectively become Administrator or poisoning to ZSL to become Super Administrator. Electrolink FM/DAB/TV Transmitter Vertica...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/10/02 12:0 a.m.263 views

Electrolink FM/DAB/TV Transmitter (Login Cookie) Authentication Bypass

Electrolink FM/DAB/TV Transmitter Login Cookie Authentication Bypass Vendor: Electrolink s.r.l. Product web page: https://www.electrolink.com Affected version: 10W, 100W, 250W, Compact DAB Transmitter 500W, 1kW, 2kW Medium DAB Transmitter 2.5kW, 3kW, 4kW, 5kW High Power DAB Transmitter 100W, 500W...

7.1AI score
Exploits0
0day.today
0day.today
added 2023/10/02 12:0 a.m.290 views

Electrolink FM/DAB/TV Transmitter Pre-Auth MPFS Image Remote Code Execution Vulnerability

Electrolink FM/DAB/TV Transmitter allows access to an unprotected endpoint that allows an MPFS File System binary image upload without authentication. The MPFS2 file system module provides a light-weight read-only file system that can be stored in external EEPROM, external serial Flash, or intern...

7.7AI score
Exploits0
0day.today
0day.today
added 2023/10/02 12:0 a.m.326 views

Electrolink FM/DAB/TV Transmitter (controlloLogin.js) Credential Disclosure Vulnerability

Electrolink FM/DAB/TV Transmitter suffers from a disclosure of clear-text credentials in controlloLogin.js that can allow security bypass and system access. Electrolink FM/DAB/TV Transmitter controlloLogin.js Credentials Disclosure Vendor: Electrolink s.r.l. Product web page:...

7.4AI score
Exploits0
Zero Science Lab
Zero Science Lab
added 2023/09/30 12:0 a.m.297 views

Electrolink FM/DAB/TV Transmitter Vertical Privilege Escalation

Summary Since 1990 Electrolink has been dealing with design and manufacturing of advanced technologies for radio and television broadcasting. The most comprehensive products range includes: FM Transmitters, DAB Transmitters, TV Transmitters for analogue and digital multistandard operation, Bandpa...

8.8CVSS5.7AI score0.00549EPSS
Exploits1
Zero Science Lab
Zero Science Lab
added 2023/09/30 12:0 a.m.287 views

Electrolink FM/DAB/TV Transmitter (controlloLogin.js) Credentials Disclosure

Summary Since 1990 Electrolink has been dealing with design and manufacturing of advanced technologies for radio and television broadcasting. The most comprehensive products range includes: FM Transmitters, DAB Transmitters, TV Transmitters for analogue and digital multistandard operation, Bandpa...

8.7CVSS5.7AI score0.0143EPSS
Exploits2
Zero Science Lab
Zero Science Lab
added 2023/09/30 12:0 a.m.294 views

Electrolink FM/DAB/TV Transmitter Remote Authentication Removal

Summary Since 1990 Electrolink has been dealing with design and manufacturing of advanced technologies for radio and television broadcasting. The most comprehensive products range includes: FM Transmitters, DAB Transmitters, TV Transmitters for analogue and digital multistandard operation, Bandpa...

8.7CVSS5.8AI score0.00391EPSS
Exploits1
Zero Science Lab
Zero Science Lab
added 2023/09/30 12:0 a.m.315 views

Electrolink FM/DAB/TV Transmitter SuperAdmin Hidden Functionality

Summary Since 1990 Electrolink has been dealing with design and manufacturing of advanced technologies for radio and television broadcasting. The most comprehensive products range includes: FM Transmitters, DAB Transmitters, TV Transmitters for analogue and digital multistandard operation, Bandpa...

8.7CVSS5.7AI score0.00551EPSS
Exploits1
Packet Storm
Packet Storm
added 2023/08/09 12:0 a.m.251 views

EuroTel ETL3100 Transmitter Authorization Bypass / Insecure Direct Object Reference

EuroTel ETL3100 Transmitter Authorization Bypass IDOR Vendor: EuroTel S.p.A. | SIEL, Sistemi Elettronici S.R.L Product web page: https://www.eurotel.it | https://www.siel.fm Affected version: v01c01 Microprocessor: socs0t10/ats01s01, Model: ETL3100 Exciter v01x37 Microprocessor: socs0t08/socs0s08...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2023/08/09 12:0 a.m.252 views

EuroTel ETL3100 Transmitter Information Disclosure

EuroTel ETL3100 Transmitter Unauthenticated Config/Log Download Vulnerability Vendor: EuroTel S.p.A. | SIEL, Sistemi Elettronici S.R.L Product web page: https://www.eurotel.it | https://www.siel.fm Affected version: v01c01 Microprocessor: socs0t10/ats01s01, Model: ETL3100 Exciter v01x37...

7.1AI score
Exploits0
0day.today
0day.today
added 2023/08/09 12:0 a.m.230 views

EuroTel ETL3100 Transmitter Default Credentials Vulnerability

EuroTel ETL3100 transmitters use a weak set of default administrative credentials that can be guessed in remote password attacks and gain full control of the system. EuroTel ETL3100 Transmitter Default Credentials Vendor: EuroTel S.p.A. | SIEL, Sistemi Elettronici S.R.L Product web page:...

7.4AI score
Exploits0
NVD
NVD
added 2023/06/06 8:15 p.m.14 views

CVE-2023-33684

Weak session management in DB Elettronica Telecomunicazioni SpA SFT DAB 600/C Firmware: 1.9.3 Bios firmware: 7.1 Apr 19 2021 Gui: 2.46 FPGA: 169.55 uc: 6.15 allows attackers on the same network to bypass authentication by re-using the IP address assigned to the device by the NAT protocol...

5.7CVSS5.8AI score0.00343EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/06/06 12:0 a.m.5 views

PT-2023-24447 · Db Elettronica Telecomunicazioni Spa · Sft Dab 600/C Bios Firmware +4

Name of the Vulnerable Software and Affected Versions: DB Elettronica Telecomunicazioni SpA SFT DAB 600/C Firmware version 1.9.3 DB Elettronica Telecomunicazioni SpA SFT DAB 600/C Bios firmware version 7.1 DB Elettronica Telecomunicazioni SpA SFT DAB 600/C Gui version 2.46 DB Elettronica...

5.7CVSS5.7AI score0.00343EPSS
Exploits1References4
CVE
CVE
added 2023/06/06 12:0 a.m.49 views

CVE-2023-33684

Summary of CVE-2023-33684 (DB Elettronica Screen SFT DAB 600/C): The vulnerability stems from weak session management that lets an attacker on the same network bypass authentication by reusing the device’s NAT-assigned IP. Affected components/versions include Firmware 1.9.3, Bios 7.1 (Apr 19 2021...

5.7CVSS5.7AI score0.00343EPSS
Exploits1References1Affected Software2
CNNVD
CNNVD
added 2023/06/06 12:0 a.m.4 views

DB Elettronica Telecomunicazioni SpA Screen SFT DAB 600/C 安全漏洞

DB Elettronica Telecomunicazioni SpA Screen SFT DAB 600/C is a new radio DAB transmitter from DB Elettronica Telecomunicazioni SpA, Italy. A security vulnerability exists in the DB Elettronica Telecomunicazioni SpA Screen SFT DAB 600/C. An attacker could exploit the vulnerability by assigning an ...

5.7CVSS5.9AI score0.00343EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/06/06 12:0 a.m.19 views

CVE-2023-33684

Weak session management in DB Elettronica Telecomunicazioni SpA SFT DAB 600/C Firmware: 1.9.3 Bios firmware: 7.1 Apr 19 2021 Gui: 2.46 FPGA: 169.55 uc: 6.15 allows attackers on the same network to bypass authentication by re-using the IP address assigned to the device by the NAT protocol...

6AI score0.00343EPSS
Exploits1References1
0day.today
0day.today
added 2023/05/23 12:0 a.m.177 views

Screen SFT DAB 600/C - Authentication Bypass Account Creation Exploit

!/usr/bin/env python3 Exploit Title: Screen SFT DAB 600/C - Authentication Bypass Account Creation Exploit Author: LiquidWorm Vendor: DB Elettronica Telecomunicazioni SpA Product web page: https://www.screen.it | https://www.dbbroadcast.com...

7.4AI score
Exploits0
Rows per page
Query Builder