CVE-2025-66255
26.11.2025, 01:16
Unauthenticated Arbitrary File Upload (upgrade_contents.php) in DB Electronica Telecomunicazioni S.p.A. Mozart FM Transmitter versions 30, 50, 100, 300, 500, 1000, 2000, 3000, 3500, 6000, 7000 allows an attacker to perform Missing signature validation allows uploading malicious firmware packages. The firmware upgrade endpoint in `upgrade_contents.php` accepts arbitrary file uploads without validating file headers, cryptographic signatures, or enforcing .tgz format requirements, allowing malicious firmware injection. This endpoint also subsequently provides ways for arbitrary file uploads and subsequent remote code executionEnginsight
| Vendor | Product | Version |
|---|---|---|
| dbbroadcast | mozart_next_3000_firmware | - |
| dbbroadcast | mozart_next_3500_firmware | - |
| dbbroadcast | mozart_next_50_firmware | - |
| dbbroadcast | mozart_next_500_firmware | - |
| dbbroadcast | mozart_next_6000_firmware | - |
| dbbroadcast | mozart_next_7000_firmware | - |
| dbbroadcast | mozart_next_100_firmware | - |
| dbbroadcast | mozart_next_1000_firmware | - |
| dbbroadcast | mozart_next_2000_firmware | - |
| dbbroadcast | mozart_next_30_firmware | - |
| dbbroadcast | mozart_next_300_firmware | - |
| dbbroadcast | mozart_dds_next_30_firmware | - |
| dbbroadcast | mozart_dds_next_50_firmware | - |
| dbbroadcast | mozart_dds_next_100_firmware | - |
| dbbroadcast | mozart_dds_next_300_firmware | - |
| dbbroadcast | mozart_dds_next_500_firmware | - |
| dbbroadcast | mozart_dds_next_1000_firmware | - |
| dbbroadcast | mozart_dds_next_2000_firmware | - |
| dbbroadcast | mozart_dds_next_3000_firmware | - |
| dbbroadcast | mozart_dds_next_3500_firmware | - |
| dbbroadcast | mozart_dds_next_6000_firmware | - |
| dbbroadcast | mozart_dds_next_7000_firmware | - |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-345 - Insufficient Verification of Data AuthenticityThe software does not sufficiently verify the origin or authenticity of data, in a way that causes it to accept invalid data.
- CWE-434 - Unrestricted Upload of File with Dangerous TypeThe software allows the attacker to upload or transfer files of dangerous types that can be automatically processed within the product's environment.