QwikSec

Security Database

CVE

CWE

Training

CVE-2023-53740

Published: Dec 10, 2025

Modified: Apr 7, 2026

PUBLISHED

Description

Screen SFT DAB 1.9.3 contains an authentication bypass vulnerability that allows attackers to change the admin password without providing the current credentials. Attackers can exploit the userManager.cgx endpoint by sending a crafted JSON request with a new MD5-hashed password to directly modify the admin account.

Vendor	Product	Versions
DB Elettronica Telecomunicazioni SpA	Screen SFT DAB Series - Compact Radio DAB Transmitter	affected `1.9.3`

Weaknesses (CWE)

References

ExploitDB-51458

exploit

Product Homepage

product

Official Product Homepage

product

Vendor Homepage

vendor-advisory

vdb-entry

vendor-advisory

vdb-entry

VulnCheck Advisory: Screen SFT DAB 1.9.3 Authentication Bypass via Admin Password Change

third-party-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.