Overview
- Description
- Weak session management in DB Elettronica Telecomunicazioni SpA SFT DAB 600/C Firmware: 1.9.3 Bios firmware: 7.1 (Apr 19 2021) Gui: 2.46 FPGA: 169.55 uc: 6.15 allows attackers on the same network to bypass authentication by re-using the IP address assigned to the device by the NAT protocol.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 5.7
- Impact score
- 3.6
- Exploitability score
- 2.1
- Vector string
- CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
- Severity
- MEDIUM
Weaknesses
- nvd@nist.gov
- NVD-CWE-noinfo
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:dbbroadcast:sft_dab_600\\/c:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "97E91C9F-B55C-4B1A-BE03-D1F03AC90FE5"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:dbbroadcast:sft_dab_600\\/c_bios:7.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F00C4582-06AF-4589-ADB7-8F727E513E44"
},
{
"criteria": "cpe:2.3:o:dbbroadcast:sft_dab_600\\/c_firmware:1.9.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B51EAD42-9B3F-44D5-973A-4758498D1339"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]