CVE-2023-53740
Screen SFT DAB 1.9.3 Authentication Bypass via Admin Password Change
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
Screen SFT DAB 1.9.3 contains an authentication bypass vulnerability that allows attackers to change the admin password without providing the current credentials. Attackers can exploit the userManager.cgx endpoint by sending a crafted JSON request with a new MD5-hashed password to directly modify the admin account.
| CWE | CWE-862 |
| Vendor | db elettronica telecomunicazioni spa |
| Product | screen sft dab series - compact radio dab transmitter |
| Published | Dec 10, 2025 |
| Last Updated | Apr 7, 2026 |
Stay Ahead of the Next One
Get instant alerts for db elettronica telecomunicazioni spa screen sft dab series - compact radio dab transmitter
Be the first to know when new unknown vulnerabilities affecting db elettronica telecomunicazioni spa screen sft dab series - compact radio dab transmitter are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
DB Elettronica Telecomunicazioni SpA / Screen SFT DAB Series - Compact Radio DAB Transmitter
1.9.3
References
exploit-db.com: https://www.exploit-db.com/exploits/51458 screen.it: https://www.screen.it dbbroadcast.com: https://www.dbbroadcast.com/products/radio/sft-dab-series-compact-air/ dbbroadcast.com: https://www.dbbroadcast.com zeroscience.mk: https://www.zeroscience.mk/en/vulnerabilities/ZSL-2023-5774.php vulncheck.com: https://www.vulncheck.com/advisories/screen-sft-dab-authentication-bypass-via-admin-password-change
Credits
LiquidWorm as Gjoko Krstic of Zero Science Lab