Vulnerability Description
TELSAT marKoni FM Transmitters are vulnerable to an attacker exploiting a hidden admin account that can be accessed through the use of hard-coded credentials.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Markoni | Markoni-D \(Compact\) Firmware | < 2.0.1 |
| Markoni | Markoni-D \(Compact\) | - |
| Markoni | Markoni-Dh \(Exciter\+Amplifiers\) Firmware | < 2.0.1 |
| Markoni | Markoni-Dh \(Exciter\+Amplifiers\) | - |
Related Weaknesses (CWE)
References
- https://www.cisa.gov/news-events/ics-advisories/icsa-24-179-01Third Party AdvisoryUS Government Resource
- https://www.cisa.gov/news-events/ics-advisories/icsa-24-179-01Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2024-39374?
CVE-2024-39374 is a vulnerability with a CVSS score of 9.8 (CRITICAL). TELSAT marKoni FM Transmitters are vulnerable to an attacker exploiting a hidden admin account that can be accessed through the use of hard-coded credentials.
How severe is CVE-2024-39374?
CVE-2024-39374 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2024-39374?
Check the references section above for vendor advisories and patch information. Affected products include: Markoni Markoni-D \(Compact\) Firmware, Markoni Markoni-D \(Compact\), Markoni Markoni-Dh \(Exciter\+Amplifiers\) Firmware, Markoni Markoni-Dh \(Exciter\+Amplifiers\).