What is CVE-2024-39373?

CVE-2024-39373 is a vulnerability in Markoni Markoni-d (Compact) Fm Transmitters, classified under Command Injection. Published 2024-06-27.

Is CVE-2024-39373 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

RCE in Markoni Markoni-d (Compact) Fm Transmitters

CVE-2024-39373

TELSAT marKoni FM Transmitters are vulnerable to a command injection vulnerability through the manipulation of settings and could allow an attacker to gain unauthorized access to the system with administrative privileges.

Vulnerability class: Command Injection (OS Command Injection)

EPSS: 0.005 (66.1th percentile) — read the EPSS interpretation.

Affected products

Markoni Markoni-d (Compact) Fm Transmitters — versions 0
Markoni Markoni-dh (Exciter+amplifiers) Fm Transmitters — versions 0

Weakness classification (CWE)

CWE-77 — Command Injection

Public proof-of-concept exploits

fkie-cad/nvd-json-data-feeds

References

www.cisa.gov/news-events/ics-advisories/icsa-24-179-01 (government-resource)

Frequently asked questions

What is CVE-2024-39373?: CVE-2024-39373 is a vulnerability in Markoni Markoni-d (Compact) Fm Transmitters, classified under Command Injection. Published 2024-06-27.
Is CVE-2024-39373 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.