CVE-2023-7328 | DB Elettronica Telecomunicazioni SpA Screen SFT DAB 600-C up to 1.9.3 User Management API client IP/timeout missing authentication (Exploit 172332 / EDB-51460)

Inserito da Angelo Barbosa | Nov 15, 2025 | CVE

A vulnerability labeled as critical has been found in DB Elettronica Telecomunicazioni SpA Screen SFT DAB 600-C up to 1.9.3. Affected by this vulnerability is an unknown functionality of the component User Management API. Such manipulation of the argument client IP/timeout leads to missing authentication.

This vulnerability is uniquely identified as CVE-2023-7328. The attack can be launched remotely. Moreover, an exploit is present.

Restrictive firewalling should be applied.

CVE-2023-7328 | DB Elettronica Telecomunicazioni SpA Screen SFT DAB 600-C up to 1.9.3 User Management API client IP/timeout missing authentication (Exploit 172332 / EDB-51460)

Post correlati

CVE-2024-30921 | jeffpiazza DerbyNet 9.0 photo.php cross site scripting

CVE-2025-1244 | GNU Emacs man URI Scheme injection

CVE-2024-22472 | Silicon Labs Z-Wave SDK prior 6.85.2 buffer overflow

CVE-2024-24407 | SourceCodester Barangay Population Monitoring System 1.0 print_pdets.php sql injection