Strik3r Blog
  • $ whoami
  • Security Research
    • CVEs POCs
      • CVE-2023-37831
      • CVE-2023-37832
      • CVE-2023-37833
      • CVE-2023-37835
      • CVE-2023-39695
      • CVE-2023-36082
      • CVE-2023-36081
      • CVE-2023-34673
      • CVE-2023-34672
      • CVE-2023-34671
      • CVE-2022-44354
      • CVE-2022-44355
      • CVE-2022-44356
      • CVE-2022-48164
      • CVE-2022-48165
      • CVE-2022-48166
      • CVE-2022-44357
    • How To Pass Your eJPT Exam
    • Hacking IoT Introduction
    • Hacking wireless by monitoring
    • The Art of Camouflage: Exploring Advanced PHP Backdoor Obfuscation Techniques
    • Beyond the Desktop: Exploiting a Leaked Token for API
  • Hack The Box
    • Paper
  • CyberTalents Challenges
    • Web Chanllenges
      • Private Agent
    • Intro to Cybersecurity Bootcamp CTF Assessment
  • Bug Bounty
    • Easy LFI
    • HTTP PUT Method Exploit
Powered by GitBook
On this page
  • Description
  • Details
  • POC

Was this helpful?

  1. Security Research
  2. CVEs POCs

CVE-2023-37835

PreviousCVE-2023-37833NextCVE-2023-39695

Last updated 1 year ago

Was this helpful?

Description

An Insecure Direct Object Reference (IDOR) in Elenos ETG150 FMtransmitter v3.12 allows attackers to bypass authorization and access resources in the system directly.

Discoverer: Eslam Kamal (Strik3r)

Vendor of Product: Elenos

Affected Product: Elenos ETG150 FM transmitter - 3.12

Details

Find full details here:

POC