CNNVD-202512-1783 Information

Dec 10, 2025 cve

CNNVD ID

CNNVD-202512-1783

CVE-2023-53776

  • CNNVD Published: 2025-12-10

Description (Chinese)

DB Elettronica Screen SFT DAB是意大利DB Elettronica公司的一系列数字音频广播发射机。 DB Elettronica Screen SFT DAB 1.9.3版本存在授权问题漏洞,该漏洞源于身份验证绕过和弱会话管理,可能导致未经授权的设备管理API请求。

Description (English)

DB Elettronica Screen SFT DAB is a series of digital audio transmitters from the Italian company DB Elettronica. Version 1.9.3 of DB Elettronica Screen SFT DAB has a mandate gap, which arises from the circumvention of authentication and weak session management, which may lead to unauthorized equipment management of API requests.

Hazard Level

High

Vulnerability Type

授权问题

Affected Vendor

DB Elettronica

Published

2025-12-10

Last Modified

2026-02-24

References

https://www.screen.it https://www.exploit-db.com/exploits/51459 https://www.dbbroadcast.com/products/radio/sft-dab-series-compact-air/ https://www.vulncheck.com/advisories/screen-sft-dab-authentication-bypass-via-session-management-weakness https://www.zeroscience.mk/en/vulnerabilities/ZSL-2023-5775.php https://access.redhat.com/security/cve/cve-2023-53776

Share on: