Unrated severityNVD Advisory· Published Nov 14, 2025· Updated Apr 7, 2026

Screen SFT DAB 600/C <= 1.9.3 Unauthenticated Information Disclosure

CVE-2023-7328

Description

Screen SFT DAB 600/C firmware versions up to and including 1.9.3 contain an improper access control on the user management API allows unauthenticated requests to retrieve structured user data, including account names and connection metadata such as client IP and timeout values.

Affected products

Screen/SFT DAB 600/Cllm-fuzzy
Range: <=1.9.3
Db Elettronica Telecomunicazioni Spa/Screen Sft Dab 600/cv5
Range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

packetstormsecurity.com/files/172332/mitreexploit
www.exploit-db.com/exploits/51460mitreexploit
www.zeroscience.mk/en/vulnerabilities/ZSL-2023-5776.phpmitretechnical-descriptionexploit
www.vulncheck.com/advisories/screen-sft-dab-600c-unauthenticated-information-disclosuremitrethird-party-advisory
www.dbbroadcast.com/products/radio/sft-dab-series-compact-air/mitreproduct

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000