Electrolink.Transmitter.login.htm.Authentication.Bypass
Description
This indicates an attack attempt to exploit an Authentication Bypass vulnerability in Electrolink Transmitter devices.
The vulnerability is due to an unprotected endpoint hosted on the device. An unauthenticated attacker can send a crafted HTTP request to this page to manipulate authentication parameters on the system which can lead to full system takeover.
Affected Products
Electrolink Compact DAB Transmitter 2.1
Electrolink Medium DAB Transmitter 2.1
Electrolink High Power DAB Transmitter 2.1
Electrolink Compact FM Transmitter 2.1
Electrolink Modular FM Transmitter 2.1
Electrolink Digital FM Transmitter 2.1
Electrolink BIII VHF TV Transmitter 2.1
Electrolink BI VHF TV Transmitter 2.1
Electrolink UHF TV Transmitter 2.1
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Currently we are unaware of any vendor supplied patch for this issue.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |