CVE-2023-53771

Name of the Vulnerable Software and Affected Versions MiniDVBLinux version 5.4

Description The software contains a flaw that allows remote attackers to bypass authentication and modify the root password. This is achieved by sending specially crafted POST requests to the system setup endpoint, specifically manipulating the SYSTEM PASSWORD parameter. This allows unauthorized access to change root credentials.

Recommendations Apply any available updates or patches to address the authentication bypass issue. As a temporary workaround, restrict access to the system setup endpoint.