6 matches found
CVE-2023-42769 Sielco Radio Link and Analog FM Transmitters Improper Access Control
The cookie session ID is of insufficient length and can be exploited by brute force, which may allow a remote attacker to obtain a valid session, bypass authentication, and manipulate the transmitter...
PT-2023-28579 · Softwarex · Softwarex
Name of the Vulnerable Software and Affected Versions: SoftwareX affected versions not specified Description: The issue is related to the cookie session ID being of insufficient length, making it vulnerable to brute force attacks. This could allow a remote attacker to obtain a valid session, bypa...
Screen SFT DAB 600/C - Authentication Bypass Erase Account Exploit
!/usr/bin/env python3 Exploit Title: Screen SFT DAB 600/C - Authentication Bypass Erase Account Exploit Author: LiquidWorm Vendor: DB Elettronica Telecomunicazioni SpA Product web page: https://www.screen.it | https://www.dbbroadcast.com...
Screen SFT DAB 600/C Authentication Bypass / Account Creation
!/usr/bin/env python3 Screen SFT DAB 600/C Authentication Bypass Account Creation Exploit Vendor: DB Elettronica Telecomunicazioni SpA Product web page: https://www.screen.it | https://www.dbbroadcast.com https://www.dbbroadcast.com/products/radio/sft-dab-series-compact-air/ Affected version:...
Screen SFT DAB 600/C Authentication Bypass Password Change Exploit
Summary Screen's new radio DAB Transmitter is reaching the highest technology level in both Digital Signal Processing and RF domain. SFT DAB Series - Compact Radio DAB Transmitter - Air. Thanks to the digital adaptive precorrection and configuatio flexibility, the Hot Swap System technology, the...
Sielco Radio Link 2.06 'id' Cookie Brute Force Session Hijacking
Summary Sielco develops and produces radio links for all transmission and reception needs, thanks to innovative units and excellent performances, accompanied by a high reliability and low consumption. Description The Cookie session ID 'id' is of an insufficient length and can be exploited by brut...