CVE-2023-34673

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Jun 23, 2023

Updated: Jul 5, 2023

Summary

CVE-2023-34673 refers to a vulnerability in the Elenos ETG150 FM transmitter, version 3.12. This issue enables an attacker to leak sensitive information, including SMTP credentials, by exploiting the publicly accessible Memcached service. The transmitter is vulnerable to attacks over the public Internet, posing a significant risk to organizations using the affected device. The vulnerability arises due to insufficient security measures in handling sensitive data and Memcached configurations. Attackers can exploit this to gain unauthorized access to the transmitter's SMTP credentials and potentially other sensitive information.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database