11 matches found
CVE-2025-66254
Unauthenticated Arbitrary File Deletion upgradecontents.php in DB Electronica Telecomunicazioni S.p.A. Mozart FM Transmitter versions 30, 50, 100, 300, 500, 1000, 2000, 3000, 3500, 6000, 7000 allows an attacker to perform The deleteupgrade parameter allows unauthenticated deletion of arbitrary...
EUVD-2025-199677
Unauthenticated Arbitrary File Upload upgradecontents.php in DB Electronica Telecomunicazioni S.p.A. Mozart FM Transmitter versions 30, 50, 100, 300, 500, 1000, 2000, 3000, 3500, 6000, 7000 allows an attacker to perform Missing signature validation allows uploading malicious firmware packages. Th...
EUVD-2025-199678
Unauthenticated Arbitrary File Deletion upgradecontents.php in DB Electronica Telecomunicazioni S.p.A. Mozart FM Transmitter versions 30, 50, 100, 300, 500, 1000, 2000, 3000, 3500, 6000, 7000 allows an attacker to perform The deleteupgrade parameter allows unauthenticated deletion of arbitrary...
CVE-2025-66254
Unauthenticated Arbitrary File Deletion upgradecontents.php in DB Electronica Telecomunicazioni S.p.A. Mozart FM Transmitter versions 30, 50, 100, 300, 500, 1000, 2000, 3000, 3500, 6000, 7000 allows an attacker to perform The deleteupgrade parameter allows unauthenticated deletion of arbitrary...
CVE-2025-66255 Unauthenticated Arbitrary File Upload (upgrade_contents.php)
Unauthenticated Arbitrary File Upload upgradecontents.php in DB Electronica Telecomunicazioni S.p.A. Mozart FM Transmitter versions 30, 50, 100, 300, 500, 1000, 2000, 3000, 3500, 6000, 7000 allows an attacker to perform Missing signature validation allows uploading malicious firmware packages. Th...
CVE-2025-66255 Unauthenticated Arbitrary File Upload (upgrade_contents.php)
Unauthenticated Arbitrary File Upload upgradecontents.php in DB Electronica Telecomunicazioni S.p.A. Mozart FM Transmitter versions 30, 50, 100, 300, 500, 1000, 2000, 3000, 3500, 6000, 7000 allows an attacker to perform Missing signature validation allows uploading malicious firmware packages. Th...
CVE-2025-66255
CVE-2025-66255 affects DB Electronica Mozart FM Transmitter series (versions 30, 50, 100, 300, 500, 1000, 2000, 3000, 3500, 6000, 7000). The vulnerability is an Unauthenticated Arbitrary File Upload in the upgrade_contents.php firmware upgrade endpoint, which does not validate file headers, crypt...
CVE-2025-66254 Unauthenticated Arbitrary File Deletion (upgrade_contents.php)
Unauthenticated Arbitrary File Deletion upgradecontents.php in DB Electronica Telecomunicazioni S.p.A. Mozart FM Transmitter versions 30, 50, 100, 300, 500, 1000, 2000, 3000, 3500, 6000, 7000 allows an attacker to perform The deleteupgrade parameter allows unauthenticated deletion of arbitrary...
CVE-2025-66254
The CVE-2025-66254 entry concerns DB Electronica Mozart FM Transmitter hardware/software family (versions 30–7000). The vulnerability stems from an unauthenticated deleteupgrade parameter in /var/www/upgrade_contents.php, which allows deletion of arbitrary files in /var/www/upload/ without extens...
DB Electronica Mozart FM Transmitter 安全漏洞
The DB Electronica Mozart FM Transmitter is a line of professional-grade FM radio transmitters from the Italian company DB Electronica. A security vulnerability exists in DB Electronica Mozart FM Transmitter versions 30, 50, 100, 300, 500, 1000, 2000, 3000, 3500, 6000, and 7000, which stems from ...
PT-2025-48107
Name of the Vulnerable Software and Affected Versions DB Electronica Telecomunicazioni S.p.A. Mozart FM Transmitter versions 30, 50, 100, 300, 500, 1000, 2000, 3000, 3500, 6000, 7000 Description An unauthenticated arbitrary file upload issue exists in the upgrade contents.php component of the...