Sft Dab 150/C Firmware
Approved changes feed: RSS · Atom
cpe:2.3:o:dbbroadcast:sft_dab_150\/c_firmware:1.9.3:*:*:*:*:*:*:*
part: o version: 1.9.3 update: *
| Vendor | Dbbroadcast (d77f64c7-e391-5ae5-8077-754951eb7032) |
|---|---|
| Product | Sft Dab 150/C Firmware (6b57a07e-af55-5100-8ec7-d08bcf77fb3a) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-53741 |
vulnerable | 2026-06-03 14:53:40.692612 |
Screen SFT DAB 1.9.3 Authentication Bypass via IP Session Management
Screen SFT DAB 1.9.3 contains a weak session management vulnerability that allows attackers to bypass authentication controls by reusing IP address-bound session identifiers. Attackers can exploit the vulnerable API by intercepting and reusing established sessions to remove user accounts without proper authorization.
Published: 2025-12-10T21:06:59.907Z
Updated: 2026-04-07T14:06:48.058Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-53740 |
vulnerable | 2026-06-03 14:53:40.687357 |
Screen SFT DAB 1.9.3 Authentication Bypass via Admin Password Change
Screen SFT DAB 1.9.3 contains an authentication bypass vulnerability that allows attackers to change the admin password without providing the current credentials. Attackers can exploit the userManager.cgx endpoint by sending a crafted JSON request with a new MD5-hashed password to directly modify the admin account.
Published: 2025-12-10T21:06:29.286Z
Updated: 2026-04-07T14:06:47.252Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.