CVE-2024-9692

Name of the Vulnerable Software and Affected Versions VIMESA VHF/FM Transmitter Blue Plus (affected versions not specified)

Description The issue concerns a Denial-of-Service (DoS) vulnerability. An unauthenticated attacker can send an unauthorized HTTP GET request to the unprotected endpoint 'doreboot' and restart the transmitter operations.

Recommendations As a temporary workaround, consider restricting access to the 'doreboot' endpoint to prevent unauthorized restarts of the transmitter operations. At the moment, there is no information about a newer version that contains a fix for this vulnerability.