CVE-2023-33684 (spa_sft_dab_600/c_bios, spa_sft_dab_600/c_firmware)

Weak session management in DB Elettronica Telecomunicazioni SpA SFT DAB 600/C Firmware: 1.9.3 Bios firmware: 7.1 (Apr 19 2021) Gui: 2.46 FPGA: 169.55 uc: 6.15 allows attackers on the same network to bypass authentication by re-using the IP address assigned to the device by the NAT protocol.

address attackers authentication bios bypass cve device firmware fpga gui ip address management nat network protocol session spa