Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
Vulnerability Details :

CVE-2024-22186

Summary
Assigner-icscert
Assigner Org ID-7d14cffa-0d7d-4270-9dc0-52cabd5a23a6
Published At-18 Apr, 2024 | 22:08
Updated At-08 Aug, 2024 | 15:41
Rejected At-
Credits

Electrolink FM/DAB/TV Transmitter Reliance on Cookies without Validation and Integrity Checking

The application suffers from a privilege escalation vulnerability. An attacker logged in as guest can escalate his privileges by poisoning the cookie to become administrator.

Vendors
-
Not available
Products
-
Metrics (CVSS)
VersionBase scoreBase severityVector
Weaknesses
Attack Patterns
Solution/Workaround
References
HyperlinkResource Type
EPSS History
Score
Latest Score
-
N/A
No data available for selected date range
Percentile
Latest Percentile
-
N/A
No data available for selected date range
Stakeholder-Specific Vulnerability Categorization (SSVC)
▼Common Vulnerabilities and Exposures (CVE)
cve.org
Assigner:icscert
Assigner Org ID:7d14cffa-0d7d-4270-9dc0-52cabd5a23a6
Published At:18 Apr, 2024 | 22:08
Updated At:08 Aug, 2024 | 15:41
Rejected At:
▼CVE Numbering Authority (CNA)
Electrolink FM/DAB/TV Transmitter Reliance on Cookies without Validation and Integrity Checking

The application suffers from a privilege escalation vulnerability. An attacker logged in as guest can escalate his privileges by poisoning the cookie to become administrator.

Affected Products
Vendor
Electrolink
Product
Compact DAB Transmitter
Default Status
unaffected
Versions
Affected
  • 10W
  • 100W
  • 250W
Vendor
Electrolink
Product
Medium DAB Transmitter
Default Status
unaffected
Versions
Affected
  • 500W
  • 1kW
  • 2kW
Vendor
Electrolink
Product
High Power DAB Transmitter
Default Status
unaffected
Versions
Affected
  • 2.5kW
  • 3kW
  • 4kW
  • 5kW
Vendor
Electrolink
Product
Compact FM Transmitter
Default Status
unaffected
Versions
Affected
  • Compact FM Transmitter
  • 500W
  • 1kW
  • 2kW
Vendor
Electrolink
Product
Modular FM Transmitter
Default Status
unaffected
Versions
Affected
  • 3kW
  • 5kW
  • 10kW
  • 15kW
  • 20kW
  • 30kW
Vendor
Electrolink
Product
Digital FM Transmitter
Default Status
unaffected
Versions
Affected
  • From 15W through 40kW (custom)
Vendor
Electrolink
Product
VHF TV Transmitter
Default Status
unaffected
Versions
Affected
  • BI
  • BIII
Vendor
Electrolink
Product
UHF TV Transmitter
Default Status
unaffected
Versions
Affected
  • From 10W through 5kW (custom)
Problem Types
TypeCWE IDDescription
CWECWE-565CWE-565 Reliance on Cookies without Validation and Integrity Checking
Type: CWE
CWE ID: CWE-565
Description: CWE-565 Reliance on Cookies without Validation and Integrity Checking
Metrics
VersionBase scoreBase severityVector
3.18.8HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
4.08.7HIGH
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Version: 3.1
Base score: 8.8
Base severity: HIGH
Vector:
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Version: 4.0
Base score: 8.7
Base severity: HIGH
Vector:
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds

Electrolink has not responded to requests to work with CISA to mitigate these vulnerabilities. Users of the affected products are encouraged to contact Electrolink https://electrolink.com/contacts/ for additional information.

Exploits
Credits
finder
Gjoko Krstic publicly reported these vulnerabilities on the internet after an unsuccessful attempt to contact Electrolink directly.
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://www.cisa.gov/news-events/ics-advisories/icsa-24-107-02
N/A
Hyperlink: https://www.cisa.gov/news-events/ics-advisories/icsa-24-107-02
Resource: N/A
▼Authorized Data Publishers (ADP)
1. CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://www.cisa.gov/news-events/ics-advisories/icsa-24-107-02
x_transferred
Hyperlink: https://www.cisa.gov/news-events/ics-advisories/icsa-24-107-02
Resource:
x_transferred
2. CISA ADP Vulnrichment
Affected Products
Vendor
electrolink
Product
compact dab transmitter
CPEs
  • cpe:2.3:a:electrolink:compact_dab_transmitter:*:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • 10w
Vendor
electrolink
Product
compact dab transmitter
CPEs
  • cpe:2.3:a:electrolink:compact_dab_transmitter:*:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • 100w
Vendor
electrolink
Product
compact dab transmitter
CPEs
  • cpe:2.3:a:electrolink:compact_dab_transmitter:*:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • 250w
Vendor
electrolink
Product
medium dab transmitter
CPEs
  • cpe:2.3:a:electrolink:medium_dab_transmitter:*:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • 1kw
Vendor
electrolink
Product
medium dab transmitter
CPEs
  • cpe:2.3:a:electrolink:medium_dab_transmitter:*:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • 2kw
Vendor
electrolink
Product
medium dab transmitter
CPEs
  • cpe:2.3:a:electrolink:medium_dab_transmitter:*:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • 500w
Vendor
electrolink
Product
high power dab transmitter
CPEs
  • cpe:2.3:a:electrolink:high_power_dab_transmitter:*:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • 2.5kw
Vendor
electrolink
Product
high power dab transmitter
CPEs
  • cpe:2.3:a:electrolink:high_power_dab_transmitter:*:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • 3kw
Vendor
electrolink
Product
high power dab transmitter
CPEs
  • cpe:2.3:a:electrolink:high_power_dab_transmitter:*:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • 4kw
Vendor
electrolink
Product
high power dab transmitter
CPEs
  • cpe:2.3:a:electrolink:high_power_dab_transmitter:*:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • 5kw
Vendor
electrolink
Product
compact fm transmitter
CPEs
  • cpe:2.3:a:electrolink:compact_fm_transmitter:*:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • 500w
Vendor
electrolink
Product
compact fm transmitter
CPEs
  • cpe:2.3:a:electrolink:compact_fm_transmitter:*:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • 1kw
Vendor
electrolink
Product
compact fm transmitter
CPEs
  • cpe:2.3:a:electrolink:compact_fm_transmitter:*:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • 2kw
Vendor
electrolink
Product
modular fm transmitter
CPEs
  • cpe:2.3:a:electrolink:modular_fm_transmitter:*:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • 3kw
Vendor
electrolink
Product
modular fm transmitter
CPEs
  • cpe:2.3:a:electrolink:modular_fm_transmitter:*:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • 5kw
Vendor
electrolink
Product
modular fm transmitter
CPEs
  • cpe:2.3:a:electrolink:modular_fm_transmitter:*:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • 10kw
Vendor
electrolink
Product
modular fm transmitter
CPEs
  • cpe:2.3:a:electrolink:modular_fm_transmitter:*:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • 15kw
Vendor
electrolink
Product
modular fm transmitter
CPEs
  • cpe:2.3:a:electrolink:modular_fm_transmitter:*:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • 20kw
Vendor
electrolink
Product
modular fm transmitter
CPEs
  • cpe:2.3:a:electrolink:modular_fm_transmitter:*:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • 30kw
Vendor
electrolink
Product
digital fm transmitter
CPEs
  • cpe:2.3:a:electrolink:digital_fm_transmitter:*:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • 15w
Vendor
electrolink
Product
vhf tv transmitter
CPEs
  • cpe:2.3:a:electrolink:vhf_tv_transmitter:*:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • bi
Vendor
electrolink
Product
vhf tv transmitter
CPEs
  • cpe:2.3:a:electrolink:vhf_tv_transmitter:*:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • bii
Vendor
electrolink
Product
uhf tv transmitter
CPEs
  • cpe:2.3:a:electrolink:uhf_tv_transmitter:*:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • 10w
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Information is not available yet
▼National Vulnerability Database (NVD)
nvd.nist.gov
Source:ics-cert@hq.dhs.gov
Published At:18 Apr, 2024 | 23:15
Updated At:15 Apr, 2026 | 00:35

The application suffers from a privilege escalation vulnerability. An attacker logged in as guest can escalate his privileges by poisoning the cookie to become administrator.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Secondary4.08.7HIGH
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Secondary3.18.8HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Type: Secondary
Version: 4.0
Base score: 8.7
Base severity: HIGH
Vector:
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Type: Secondary
Version: 3.1
Base score: 8.8
Base severity: HIGH
Vector:
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CPE Matches
Weaknesses
CWE IDTypeSource
CWE-565Secondaryics-cert@hq.dhs.gov
CWE ID: CWE-565
Type: Secondary
Source: ics-cert@hq.dhs.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://www.cisa.gov/news-events/ics-advisories/icsa-24-107-02ics-cert@hq.dhs.gov
N/A
https://www.cisa.gov/news-events/ics-advisories/icsa-24-107-02af854a3a-2127-422b-91ae-364da2661108
N/A
Hyperlink: https://www.cisa.gov/news-events/ics-advisories/icsa-24-107-02
Source: ics-cert@hq.dhs.gov
Resource: N/A
Hyperlink: https://www.cisa.gov/news-events/ics-advisories/icsa-24-107-02
Source: af854a3a-2127-422b-91ae-364da2661108
Resource: N/A

Change History

0
Information is not available yet

Similar CVEs

8Records found
CVE-2024-21872
Matching Score-6
Assigner-Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)
ShareView Details
Matching Score-6
Assigner-Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)
CVSS Score-8.7||HIGH
EPSS-0.04% / 11.88%
||
7 Day CHG~0.00%
Published-18 Apr, 2024 | 22:10
Updated-15 Apr, 2026 | 00:35
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Electrolink FM/DAB/TV Transmitter Reliance on Cookies without Validation and Integrity Checking

The device allows an unauthenticated attacker to bypass authentication and modify the cookie to reveal hidden pages that allows more critical operations to the transmitter.

Action-Not Available
Vendor-Electrolinkelectrolink
Product-VHF TV TransmitterDigital FM TransmitterUHF TV TransmitterCompact FM TransmitterCompact DAB TransmitterHigh Power DAB TransmitterMedium DAB TransmitterModular FM Transmitterhigh power dab transmitterdigital fm transmittermodular fm transmittervhf tv transmittercompact fm transmittercompact dab transmitter
CWE ID-CWE-565
Reliance on Cookies without Validation and Integrity Checking
CVE-2026-5130
Matching Score-4
Assigner-Wordfence
ShareView Details
Matching Score-4
Assigner-Wordfence
CVSS Score-8.8||HIGH
EPSS-0.03% / 9.73%
||
7 Day CHG~0.00%
Published-30 Mar, 2026 | 22:24
Updated-24 Apr, 2026 | 18:11
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Debugger & Troubleshooter <= 1.3.2 - Unauthenticated Privilege Escalation to Administrator via Cookie Manipulation

The Debugger & Troubleshooter plugin for WordPress was vulnerable to Unauthenticated Privilege Escalation in versions up to and including 1.3.2. This was due to the plugin accepting the wp_debug_troubleshoot_simulate_user cookie value directly as a user ID without any cryptographic validation or authorization checks. The cookie value was used to override the determine_current_user filter, which allowed unauthenticated attackers to impersonate any user by simply setting the cookie to their target user ID. This made it possible for unauthenticated attackers to gain administrator-level access and perform any privileged actions including creating new administrator accounts, modifying site content, installing plugins, or taking complete control of the WordPress site. The vulnerability was fixed in version 1.4.0 by implementing a cryptographic token-based validation system where only administrators can initiate user simulation, and the cookie contains a random 64-character token that must be validated against database-stored mappings rather than accepting arbitrary user IDs.

Action-Not Available
Vendor-jhimross
Product-Debugger & Troubleshooter
CWE ID-CWE-565
Reliance on Cookies without Validation and Integrity Checking
CVE-2024-9970
Matching Score-4
Assigner-TWCERT/CC
ShareView Details
Matching Score-4
Assigner-TWCERT/CC
CVSS Score-8.8||HIGH
EPSS-1.16% / 78.83%
||
7 Day CHG~0.00%
Published-15 Oct, 2024 | 03:36
Updated-17 Oct, 2024 | 20:33
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
NewType FlowMaster BPM Plus - Privilege Escalation

The FlowMaster BPM Plus system from NewType has a privilege escalation vulnerability. Remote attackers with regular privileges can elevate their privileges to administrator by tampering with a specific cookie.

Action-Not Available
Vendor-newtypeNewTypenew_type
Product-flowmaster_bpm_plusFlowMaster BPM Plusflowmaster_bpm_plus
CWE ID-CWE-565
Reliance on Cookies without Validation and Integrity Checking
CVE-2025-59247
Matching Score-4
Assigner-Microsoft Corporation
ShareView Details
Matching Score-4
Assigner-Microsoft Corporation
CVSS Score-8.8||HIGH
EPSS-0.18% / 39.14%
||
7 Day CHG~0.00%
Published-09 Oct, 2025 | 21:04
Updated-22 Feb, 2026 | 17:26
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Azure PlayFab Elevation of Privilege Vulnerability

Azure PlayFab Elevation of Privilege Vulnerability

Action-Not Available
Vendor-Microsoft Corporation
Product-azure_playfabAzure PlayFab
CWE ID-CWE-269
Improper Privilege Management
CWE ID-CWE-565
Reliance on Cookies without Validation and Integrity Checking
CVE-2022-50926
Matching Score-4
Assigner-VulnCheck
ShareView Details
Matching Score-4
Assigner-VulnCheck
CVSS Score-8.7||HIGH
EPSS-0.14% / 33.77%
||
7 Day CHG+0.02%
Published-13 Jan, 2026 | 22:51
Updated-14 Jan, 2026 | 19:19
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
WAGO 750-8212 PFC200 G2 2ETH RS Privilege Escalation

WAGO 750-8212 PFC200 G2 2ETH RS firmware contains a privilege escalation vulnerability that allows attackers to manipulate user session cookies. Attackers can modify the cookie's 'name' and 'roles' parameters to elevate from ordinary user to administrative privileges without authentication.

Action-Not Available
Vendor-Wago
Product-WAGO 750-8212 PFC200
CWE ID-CWE-565
Reliance on Cookies without Validation and Integrity Checking
CVE-2016-15002
Matching Score-4
Assigner-VulDB
ShareView Details
Matching Score-4
Assigner-VulDB
CVSS Score-7.3||HIGH
EPSS-0.31% / 54.30%
||
7 Day CHG~0.00%
Published-09 Jun, 2022 | 06:15
Updated-15 Apr, 2025 | 14:31
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
MONyog Ultimate Cookie privileges management

A vulnerability, which was classified as critical, was found in MONyog Ultimate 6.63. This affects an unknown part of the component Cookie Handler. The manipulation of the argument HasServerEdit/IsAdmin leads to privilege escalation. It is possible to initiate the attack remotely.

Action-Not Available
Vendor-ideracorpunspecified
Product-webyog_monyog_ultimateMONyog Ultimate
CWE ID-CWE-269
Improper Privilege Management
CWE ID-CWE-565
Reliance on Cookies without Validation and Integrity Checking
CVE-2021-41263
Matching Score-4
Assigner-GitHub, Inc.
ShareView Details
Matching Score-4
Assigner-GitHub, Inc.
CVSS Score-8.3||HIGH
EPSS-0.20% / 41.61%
||
7 Day CHG~0.00%
Published-15 Nov, 2021 | 20:10
Updated-04 Aug, 2024 | 03:08
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Secure/signed cookies share secrets between sites in rails_multisite

rails_multisite provides multi-db support for Rails applications. In affected versions this vulnerability impacts any Rails applications using `rails_multisite` alongside Rails' signed/encrypted cookies. Depending on how the application makes use of these cookies, it may be possible for an attacker to re-use cookies on different 'sites' within a multi-site Rails application. The issue has been patched in v4 of the `rails_multisite` gem. Note that this upgrade will invalidate all previous signed/encrypted cookies. The impact of this invalidation will vary based on the application architecture.

Action-Not Available
Vendor-Civilized Discourse Construction Kit, Inc.
Product-rails_multisiterails_multisite
CWE ID-CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
CWE ID-CWE-565
Reliance on Cookies without Validation and Integrity Checking
CWE ID-CWE-327
Use of a Broken or Risky Cryptographic Algorithm
CVE-2022-30620
Matching Score-4
Assigner-Israel National Cyber Directorate (INCD)
ShareView Details
Matching Score-4
Assigner-Israel National Cyber Directorate (INCD)
CVSS Score-8.2||HIGH
EPSS-0.37% / 58.86%
||
7 Day CHG~0.00%
Published-18 Jul, 2022 | 12:54
Updated-17 Sep, 2024 | 01:21
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Cellinx NVT – IP PTZ Camera Privilege Escalation

On Cellinx Camera with guest enabled, attacker with web access can elevate privileges to administrative: "1" to "0" privileges by changing the following cookie values from "is_admin", "showConfig". Administrative Privileges which allows changing various configuration in the camera.

Action-Not Available
Vendor-cellinxCellinx
Product-cellinx_nvt_-_ip_ptz_cameracellinx_nvt_-_ip_ptz_camera_firmwareCellinx NVT - IP PTZ Camera
CWE ID-CWE-565
Reliance on Cookies without Validation and Integrity Checking
Details not found