FlagThis

CyberSecurity updates
Updated: 2024-10-22 07:45:27 Pacfic
mitsubishielectric.com
Vulnerabilities in TEM Opera Plus FM Family Transmitters - 10d

Read more: www.mitsubishielectric.com

TEM Opera Plus FM Family Transmitters, version 35.45, have been identified with two vulnerabilities: a missing authentication vulnerability and a cross-site request forgery (CSRF) vulnerability. These vulnerabilities could allow an attacker to gain unauthorized access to critical functions or to manipulate the transmitters through CSRF attacks. The TEM company has not responded to reports of these vulnerabilities, making it crucial for users to take immediate mitigation steps, such as minimizing network exposure and utilizing secure remote access methods.

References:
  • Over Security - An attacker could target Opera Plus FM Family Transmitters (CVE-2024-41987 and CVE-2024-41988) by missing authentication for critical function and cross-site request forgery (CSRF) vulnerabilities, as - 10d
  • www.cisa.gov - CISA issued an on the vulnerabilities on Oct. 3, 2024, and CVE records were created the same day. - 10d
  • www.zeroscience.mk - An attacker could target Opera Plus FM Family Transmitters (CVE-2024-41987 and CVE-2024-41988) by missing authentication for critical function and cross-site request forgery (CSRF) vulnerabilities, as - 10d

Classification:
  • HashTags: ICS Vulnerability TEM
  • Company: TEM
  • Target: Opera Plus FM Family Transmitters
  • Feature: Transmitters
  • Type: Vulnerability
  • Severity: Medium

This site is an experimental news aggregator using feeds I personally follow. You can reach me using contacts documented at my website here (https://royans.net/) if you have feedback. You can also find Flathis at Mastodon.