PT-2024-38025 · Positron · Positron Broadcast Signal Processor Tra7005
Published
2024-07-25
·
Updated
2024-08-26
·
CVE-2024-7007
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Positron Broadcast Signal Processor TRA7005 version 1.20
Description
The issue allows an attacker to bypass authentication, potentially gaining unauthorized access to protected areas of the application.
Recommendations
For Positron Broadcast Signal Processor TRA7005 version 1.20, as a temporary workaround, consider restricting access to sensitive areas of the application until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.
Fix
Missing Authentication
Authentication Bypass Using an Alternate Path or Channel
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Positron Broadcast Signal Processor Tra7005