← Advisories

TELSAT marKoni FM Transmitter 1.9.5 Insecure Access Control Change Password

High
Advisory ID
ZSL-2024-5811
Release Date
31 January 2024
Vendor
TELSAT Srl - https://www.markoni.it
Affected Version
Markoni-D (Compact) FM Transmitters, Markoni-DH (Exciter+Amplifiers) FM Transmitters, Markoni-A (Analogue Modulator) FM Transmitters, Firmware: 1.9.5, 1.9.3, 1.5.9, 1.4.6, 1.3.9
CVE
CVE-2024-39376
Tested On
GNU/Linux 3.10.53 (armv7l), icorem6solox, lighttpd/1.4.33
Summary

Professional FM transmitters.

Description

Unauthorized user could exploit this vulnerability to change his/her password, potentially gaining unauthorized access to sensitive information or performing actions beyond her/his designated permissions.

Proof of Concept
markoni_eop.txtTXT
Disclosure Timeline
10.11.2023Vulnerability discovered.
21.11.2023Contact with the vendor.
22.11.2023No response from the vendor.
19.01.2024Contact with the vendor.
29.01.2024No response from the vendor.
31.01.2024Public security advisory released.
Credits
Vulnerability discovered by Gjoko Krstic
References
[1]https://www.zeroscience.mk/#/advisories/ZSL-2024-5810
[2]https://packetstormsecurity.com/files/176936/
[3]https://www.exploit-db.com/exploits/51908
[4]https://exchange.xforce.ibmcloud.com/vulnerabilities/286367
[5]https://www.cisa.gov/news-events/ics-advisories/icsa-24-179-01
[6]https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39376
[7]https://nvd.nist.gov/vuln/detail/CVE-2024-39376
Changelog
31.01.2024Initial release
01.02.2024Added reference [2]
19.03.2024Added reference [3]
28.03.2024Added reference [4]
01.07.2024Added reference [5], [6] and [7]