19 matches found
CVE-2024-41987
The TEM Opera Plus FM Family Transmitter application interface allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to perform certain actions with administrative privileges if a logged-in user visits a...
CVE-2024-41988
TEM Opera Plus FM Family Transmitter allows access to an unprotected endpoint that allows MPFS File System binary image upload without authentication. This file system serves as the basis for the HTTP2 web server module but is also used by the SNMP module and is available to other applications th...
EUVD-2024-39309
Malicious code in bioql PyPI...
CVE-2024-41988
TEM Opera Plus FM Family Transmitter allows access to an unprotected endpoint that allows MPFS File System binary image upload without authentication. This file system serves as the basis for the HTTP2 web server module but is also used by the SNMP module and is available to other applications th...
CVE-2024-41987
The TEM Opera Plus FM Family Transmitter application interface allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to perform certain actions with administrative privileges if a logged-in user visits a...
CVE-2024-41988
CVE-2024-41988 affects TEM Opera Plus FM Family Transmitter (affected version: 35.45). An unprotected endpoint allows MPFS File System binary image upload without authentication, affecting the HTTP2 web server module and SNMP module (and shared storage access). This can be exploited to overwrite ...
CVE-2024-41987
CVE-2024-41987 corresponds to a Cross-Site Request Forgery (CSRF) vulnerability in TEM Opera Plus FM Family Transmitter. Public documentation (CISA ICS advisory and vendor/community reports) confirms the affected product is TEM Opera Plus FM Family Transmitter, specifically version 35.45, with th...
CVE-2024-41987 Cross-Site Request Forgery (CSRF) vulnerability in TEM Opera Plus FM Family Transmitter
The TEM Opera Plus FM Family Transmitter application interface allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to perform certain actions with administrative privileges if a logged-in user visits a...
CVE-2024-41987 Cross-Site Request Forgery (CSRF) vulnerability in TEM Opera Plus FM Family Transmitter
The TEM Opera Plus FM Family Transmitter application interface allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to perform certain actions with administrative privileges if a logged-in user visits a...
TEM Opera Plus FM Family Transmitter
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION : Exploitable remotely/low attack complexity/public exploits are available Vendor : TEM Equipment : Opera Plus FM Family Transmitter Vulnerabilities : Missing Authentication for Critical Function, Cross-Site Request Forgery CSRF 2. RISK...
TEM Opera Plus FM Family Transmitter 访问控制错误漏洞
The TEM Opera Plus FM Family Transmitter is a frequency modulation FM transmitter device from TEM. An access control error vulnerability exists in TEM Opera Plus FM Family Transmitter version 35.45, which arises from allowing access to an unprotected endpoint that can upload a binary image of the...
TEM Opera Plus FM Family Transmitter 35.45 - XSRF Vulnerability
CSRF Change Forward Power: -------------------------...
TEM Opera Plus FM Family Transmitter 35.45 - XSRF
CSRF Change Forward Power: ------------------------- input type="submit" val...
TEM Opera Plus FM Family Transmitter 35.45 - Remote Code Execution
TEM Opera Plus FM Family Transmitter 35.45 Remote Code Execution Vendor: Telecomunicazioni Elettro Milano TEM S.r.l. Product web page: https://www.tem-italy.it Affected version: Software version: 35.45 Webserver version: 1.7 Summary: This new line of Opera plus FM Transmitters combines very high...
TEM Opera Plus FM Family Transmitter 35.45 Cross Site Request Forgery Vulnerability
CSRF Change Forward Power: -------------------------...
TEM Opera Plus FM Family Transmitter 35.45 Cross Site Request Forgery
CSRF Change Forward Power: -------------------------...
TEM Opera Plus FM Family Transmitter 35.45 Remote Code Execution Vulnerability
TEM Opera Plus FM Family Transmitter 35.45 Remote Code Execution Vendor: Telecomunicazioni Elettro Milano TEM S.r.l. Product web page: https://www.tem-italy.it Affected version: Software version: 35.45 Webserver version: 1.7 Summary: This new line of Opera plus FM Transmitters combines very high...
TEM Opera Plus FM Family Transmitter 35.45 XSRF
Summary This new line of Opera plus FM Transmitters combines very high efficiency, high reliability and low energy consumption in compact solutions. They have innovative functions and features that can eliminate the costs required by additional equipment: automatic exchange of audio sources,...
TEM Opera Plus FM Family Transmitter 35.45 Remote Code Execution
Summary This new line of Opera plus FM Transmitters combines very high efficiency, high reliability and low energy consumption in compact solutions. They have innovative functions and features that can eliminate the costs required by additional equipment: automatic exchange of audio sources,...