Critical Vulnerability: Elenos ETG150 FM Transmitter Version 3.12 Exposes SMTP Credentials and Sensitive Data via Publicly Accessible Memcached Service

CVE-2023-34673 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Elenos ETG150 FM transmitter running on version 3.12 was discovered to be leaking SMTP credentials and other sensitive information by exploiting the publicly accessible Memcached service. The attack can occur over the public Internet in some cases.

Learn more about our Web Application Penetration Testing UK.