CVE-2023-37831
CVSS 3.1 Score 5.3 of 10 (medium)
Details
Summary
CVE-2023-37831 is a newly identified vulnerability affecting Elenos ETG150 FM transmitter version 3.12. This issue grants attackers the ability to enumerate user accounts by analyzing server responses when incorrect login credentials are submitted, posing a potential security risk. Attackers can leverage this vulnerability to gain valuable information for further exploitation attempts. The precise impact and potential mitigations are currently under investigation. It is recommended that users upgrade to the latest version of the transmitter software or implement strong access control measures to mitigate this issue.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.