CVE-2024-39375
Use of Client-Side Authentication in TELSAT marKoni FM Transmitter
In short
TELSAT marKoni FM Transmitters can be bypassed to give attackers full administrator control without proper login credentials. This is critical because anyone can remotely take over the device and modify broadcast settings.
Technical detail
The vulnerability stems from client-side authentication implementation (CWE-603) in TELSAT marKoni FM Transmitters, allowing attackers to bypass authentication mechanisms and escalate privileges to administrator level. An unauthenticated remote attacker can exploit this to gain full administrative control over the transmitter, potentially disrupting FM broadcast operations.
Summary generated and translated by AI from the official description.
TELSAT marKoni FM Transmitters are vulnerable to an attacker bypassing authentication and gaining administrator privileges.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected products
marKoni · Markoni-D (Compact) FM TransmittersmarKoni · Markoni-DH (Exciter+Amplifiers) FM TransmittersWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →