CVE-2024-39373

EUVD-2024-37923
TELSAT marKoni FM Transmitters are vulnerable to a command injection vulnerability through the manipulation of settings and could allow an attacker to gain unauthorized access to the system with administrative privileges.
Command Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.2 HIGH
NETWORK
LOW
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 65%
Affected Products (NVD)
VendorProductVersion
markonimarkoni-d_\(compact\)_firmware
𝑥
< 2.0.1
markonimarkoni-dh_\(exciter\+amplifiers\)_firmware
𝑥
< 2.0.1
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
markonimarkoni-d_fm_transmitter
𝑥
< 2.0.1
ADP
markonimarkoni-dh_fm_transmitter
𝑥
< 2.0.1
ADP
Common Weakness Enumeration
References
https://www.cisa.gov/news-events/ics-advisories/icsa-24-179-01
https://www.cisa.gov/news-events/ics-advisories/icsa-24-179-01