84 matches found
CVE-2023-34671
Improper Access Control leads to privilege escalation affecting Elenos ETG150 FM transmitter running on version 3.12 by exploiting user's role in the user profile. An attack could occur over the public Internet in some cases...
CVE-2023-34673
The CVE-2023-34673 issue affects the Elenos ETG150 FM transmitter (firmware v3.12). It arises from insufficient protection of a publicly accessible Memcached service, enabling an attacker to leak SMTP credentials and other sensitive information, with potential exposure over the public Internet in...
CVE-2023-34671
CVE-2023-34671 affects Elenos ETG150 FM transmitter (version 3.12). Root cause: improper access control that lets a user’s role in their profile escalate privileges. Impact: potential privilege escalation; attack could occur over the public Internet in some cases. Connected sources also indicate ...
CVE-2023-34672
CVE-2023-34672 affects the Elenos ETG150 FM transmitter (version 3.12). The root cause is improper access control in the admin/profile permissions, enabling an attacker to add a high-privilege user via the user’s role. The impact is privilege escalation with impact on confidentiality, integrity, ...