Vulnerability Database

314,433

Total vulnerabilities in the database

CVE-2023-53968

Screen SFT DAB 600/C Firmware 1.9.3 contains a session management vulnerability that allows attackers to bypass authentication controls by exploiting IP address session binding. Attackers can reuse the same IP address and issue unauthorized requests to the userManager API to remove user accounts without proper authentication.

Published: Dec 22, 2025
Updated: Dec 27, 2025
CVE: CVE-2023-53968
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-306

Affected Software
References

Software	From	Fixed in
dbbroadcast / sft_dab_600/c_firmware	1.9.3	1.9.3.x

https://www.dbbroadcast.com
https://www.dbbroadcast.com/products/radio/sft-dab-series-compact-air/
https://www.exploit-db.com/exploits/51457
https://www.vulncheck.com/advisories/screen-sft-dab-c-firmware-authentication-bypass-erase-account
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2023-5773.php

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo