CVE-2024-22179

EUVD-2024-19775
The application is vulnerable to an unauthenticated parameter 
manipulation that allows an attacker to set the credentials to blank 
giving her access to the admin panel. Also vulnerable to account 
takeover and arbitrary password change.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 22%
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
electrolinkdigital fm transmitter
15w ≤
𝑥
≤ 40kw
ADP
electrolinkuhf tv transmitter
10w ≤
𝑥
≤ 5kw
ADP
Common Weakness Enumeration
References
https://www.cisa.gov/news-events/ics-advisories/icsa-24-107-02
https://www.cisa.gov/news-events/ics-advisories/icsa-24-107-02