CVE-2023-37831

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Oct 31, 2023
Updated: Nov 8, 2023

Summary

CVE-2023-37831 is a newly identified vulnerability affecting Elenos ETG150 FM transmitter version 3.12. This issue grants attackers the ability to enumerate user accounts by analyzing server responses when incorrect login credentials are submitted, posing a potential security risk. Attackers can leverage this vulnerability to gain valuable information for further exploitation attempts. The precise impact and potential mitigations are currently under investigation. It is recommended that users upgrade to the latest version of the transmitter software or implement strong access control measures to mitigate this issue.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share