CVE-2024-39375

June 27, 2024, 5:11 p.m.

Tags

ics-cert@hq.dhs.gov
2024-06-27
CVE-2024-39375
CWE-603

Product(s) Impacted

TELSAT marKoni FM Transmitters

Description

TELSAT marKoni FM Transmitters are vulnerable to an attacker bypassing authentication and gaining administrator privileges.

Weaknesses

CWE-603
Use of Client-Side Authentication

A client/server product performs authentication within client code but not in server code, allowing server-side authentication to be bypassed via a modified client that omits the authentication check.

CWE ID: 603

Date

Published: June 27, 2024, 4:15 p.m.

Last Modified: June 27, 2024, 5:11 p.m.

Status : Awaiting Analysis

CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.

More info

Source

ics-cert@hq.dhs.gov

References

https://www.cisa.gov/news-events/ics-advisories/icsa-24-179-01
ics-cert@hq.dhs.gov