CVE-2023-39695

Description

Insufficient session expiration in Elenos ETG150 FM Transmitter v3.12allows attackers to arbitrarily change transmitter configuration and data after logging out.

Discoverer: Eslam Kamal (Strik3r)

Vendor of Product: Elenos

Affected Product: Elenos ETG150 FM transmitter - 3.12

Details

Find full details here:

POC