CVE-2023-37833

Summary

CVE-2023-37833 is a newly identified vulnerability affecting the Elenos ETG150 FM transmitter version 3.12. This issue involves an improper access control mechanism, enabling unprivileged attackers to manipulate settings that are typically restricted to authorized, high-level users. Consequently, attackers can make arbitrary configuration edits, potentially leading to system misconfigurations or denial-of-service scenarios. This vulnerability poses a significant risk to the functionality and security of impacted Elenos FM transmitters. It is recommended that organizations using this equipment update to a patched version as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.