CVE-2023-37832

A lack of rate limiting in Elenos ETG150 FM transmitter v3.12 allows attackers to obtain user credentials via brute force and cause other unspecified impacts.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:elenos:etg150_firmware:3.12:*:*:*:*:*:*:*
cpe:2.3:h:elenos:etg150:-:*:*:*:*:*:*:*

History

08 Nov 2023, 18:16

Type Values Removed Values Added
References (MISC) https://github.com/strik3r0x1/Vulns/blob/main/Lack%20of%20resources%20and%20rate%20limiting%20-%20Elenos.md - (MISC) https://github.com/strik3r0x1/Vulns/blob/main/Lack%20of%20resources%20and%20rate%20limiting%20-%20Elenos.md - Exploit, Third Party Advisory
CPE cpe:2.3:o:elenos:etg150_firmware:3.12:*:*:*:*:*:*:*
cpe:2.3:h:elenos:etg150:-:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.5
CWE CWE-307
First Time Elenos etg150
Elenos etg150 Firmware
Elenos

31 Oct 2023, 18:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-10-31 18:15

Updated : 2024-02-28 20:33


NVD link : CVE-2023-37832

Mitre link : CVE-2023-37832

CVE.ORG link : CVE-2023-37832


JSON object : View

Products Affected

elenos

  • etg150_firmware
  • etg150
CWE
CWE-307

Improper Restriction of Excessive Authentication Attempts