CVE-2023-7328
Screen SFT DAB 600/C <= 1.9.3 Unauthenticated Information Disclosure
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
Screen SFT DAB 600/C firmware versions up to and including 1.9.3 contain an improper access control on the user management API allows unauthenticated requests to retrieve structured user data, including account names and connection metadata such as client IP and timeout values.
| CWE | CWE-306 |
| Vendor | db elettronica telecomunicazioni spa |
| Product | screen sft dab 600/c |
| Published | Nov 14, 2025 |
| Last Updated | Apr 7, 2026 |
Stay Ahead of the Next One
Get instant alerts for db elettronica telecomunicazioni spa screen sft dab 600/c
Be the first to know when new unknown vulnerabilities affecting db elettronica telecomunicazioni spa screen sft dab 600/c are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
DB Elettronica Telecomunicazioni SpA / Screen SFT DAB 600/C
0 โค 1.9.3
References
exploit-db.com: https://www.exploit-db.com/exploits/51460 dbbroadcast.com: https://www.dbbroadcast.com/products/radio/sft-dab-series-compact-air/ zeroscience.mk: https://www.zeroscience.mk/en/vulnerabilities/ZSL-2023-5776.php packetstormsecurity.com: https://packetstormsecurity.com/files/172332/ vulncheck.com: https://www.vulncheck.com/advisories/screen-sft-dab-600c-unauthenticated-information-disclosure
Credits
Gjoko Krstic of Zero Science Lab