CVE-2023-34671

Improper Access Control leads to privilege escalation affecting Elenos ETG150 FM transmitter running on version 3.12 by exploiting user's role in the user profile. An attack could occur over the public Internet in some cases.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:elenos:etg150_fm_firmware:3.12:*:*:*:*:*:*:*
cpe:2.3:h:elenos:etg150_fm:-:*:*:*:*:*:*:*

History

21 Nov 2024, 08:07

Type Values Removed Values Added
References () http://elenos.com - Product () http://elenos.com - Product
References () https://strik3r.gitbook.io/strik3r-blog/security-research/cves-pocs/cve-2023-34671 - Exploit, Third Party Advisory () https://strik3r.gitbook.io/strik3r-blog/security-research/cves-pocs/cve-2023-34671 - Exploit, Third Party Advisory

05 Jul 2023, 15:42

Type Values Removed Values Added
New CVE

Information

Published : 2023-06-23 18:15

Updated : 2024-11-21 08:07


NVD link : CVE-2023-34671

Mitre link : CVE-2023-34671

CVE.ORG link : CVE-2023-34671


JSON object : View

Products Affected

elenos

  • etg150_fm
  • etg150_fm_firmware