Name of the Vulnerable Software and Affected Versions ЕКRASMS-SP (affected versions not specified)

Description The issue is related to the implementation of the interaction protocol between the "АРМ Релейщика" software and the "Сервер связи" software of the ЕКRASMS-SP complex. It is caused by the lack of authentication in the mechanism for extending the list of servers. Exploitation of this issue could allow a remote attacker to modify the list of servers using a specially crafted UDP packet.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.