CVE-2023-5754

Name of the Vulnerable Software and Affected Versions Sielco PolyEco1000 (affected versions not specified)

Description The issue is related to insufficient restriction of authentication attempts and the use of a weak set of default administrative credentials in the Sielco PolyEco1000 digital fm-transmitter software. This weakness can be exploited by a remote attacker to gain full control of the system through remote password attacks.

Recommendations As a temporary workaround, consider changing the default administrative credentials to stronger ones until a patch is available. Restrict access to the system to minimize the risk of exploitation. Avoid using default or easily guessable credentials in the affected system until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.