Vulnerability Database

314,433

Total vulnerabilities in the database

CVE-2023-53969

Screen SFT DAB 600/C firmware 1.9.3 contains a session management vulnerability that allows attackers to bypass authentication controls by exploiting IP address session binding. Attackers can reuse the same IP address and issue unauthorized requests to the userManager API to change user passwords without proper authentication.

Published: Dec 22, 2025
Updated: Dec 27, 2025
CVE: CVE-2023-53969
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.5
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWEs:

CWE-306

Affected Software
References

Software	From	Fixed in
dbbroadcast / sft_dab_600/c_firmware	1.9.3	1.9.3.x

https://www.dbbroadcast.com
https://www.dbbroadcast.com/products/radio/sft-dab-series-compact-air/
https://www.exploit-db.com/exploits/51456
https://www.vulncheck.com/advisories/screen-sft-dab-c-firmware-authentication-bypass-password-change
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2023-5772.php

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo