Approved changes feed: RSS · Atom

cpe:2.3:a:0xacab:mat2:0.10.0:*:*:*:*:*:*:*

part: a version: 0.10.0 update: *

Vendor0Xacab (8d42b3ce-6984-544a-9085-ad96e8d1699d)
ProductMat2 (aa790b9b-e4fc-53fb-af69-fb47037b8d78)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
pkg:deb/debian/mat2 purl2cpe 2026-06-01 10:16:20.100822
pkg:deb/ubuntu/mat2 purl2cpe 2026-06-01 10:16:20.100823
pkg:github/atenart/mat2 purl2cpe 2026-06-01 10:16:20.100825
pkg:github/jvoisin/mat2 purl2cpe 2026-06-01 10:16:20.100826
pkg:pypi/mat2 purl2cpe 2026-06-01 10:16:20.100827
pkg:rpm/opensuse/python-mat2 purl2cpe 2026-06-01 10:16:20.100829

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2024-1491 vulnerable 2026-06-08 06:25:40.270734 Electrolink FM/DAB/TV Transmitter Missing Authentication for Critical Function
HIGH (7.5)
The devices allow access to an unprotected endpoint that allows MPFS file system binary image upload without authentication. The MPFS2 file system module provides a light-weight read-only file system that can be stored in external EEPROM, external serial flash, or internal flash program memory. This file system serves as the basis for the HTTP2 web server module, but is also used by the SNMP module and is available to other applications that require basic read-only storage capabilities. This can be exploited to overwrite the flash program memory that holds the web server's main interfaces and execute arbitrary code.
Published: 2024-04-18T22:13:54.962Z
Updated: 2024-08-01T18:40:21.285Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.