TELSAT marKoni FM Transmitter

Act Now9.8ICS-CERT ICSA-24-179-01Jun 27, 2024

Attack VectorNetwork

Auth RequiredNone

ComplexityLow

User InteractionNone needed

Summary

TELSAT marKoni FM Transmitter firmware versions prior to 2.0.1 contain multiple vulnerabilities: CWE-77 (command injection), CWE-798 (hardcoded credentials), CWE-603 (use of untrusted data in object serialization), and CWE-284 (improper access control). These vulnerabilities allow an attacker to bypass authentication or execute remote code on the device.

What this means

What could happen

An attacker could gain control of the FM transmitter, enabling them to take the broadcast off-air, inject false content, or disable the station's emergency alert capability. This directly impacts public communication infrastructure and community notification systems.

Who's at risk

FM broadcasters and radio stations operating TELSAT marKoni-D (Compact) or Markoni-DH (Exciter+Amplifiers) transmitter equipment. This affects commercial radio stations, public broadcasting stations, emergency alert systems, and any organization using these transmitters for public communication.

How it could be exploited

An attacker on the network or internet can send a malicious command or object to the transmitter without valid credentials (due to hardcoded credentials and input validation flaws) to execute arbitrary code or bypass authentication. The critical CVSS 9.8 and network-accessible nature indicate the device can be targeted remotely without user interaction.

Prerequisites

Network connectivity to the FM transmitter device (internet or local network)
No valid credentials required due to hardcoded credentials vulnerability

remotely exploitableno authentication requiredlow complexityno patch availableaffects critical broadcast and emergency communication systems

Exploitability

Low exploit probability (EPSS 0.5%)

Affected products (2)

2 with fix

ProductAffected VersionsFix Status

Markoni-D (Compact) FM Transmitters: <2.0.1<2.0.12.0.1

Markoni-DH (Exciter+Amplifiers) FM Transmitters: <2.0.1<2.0.12.0.1

Remediation & Mitigation

0/4

Do now

0/1

HARDENINGIsolate FM transmitter devices from the internet and from business network segments using firewall rules to restrict access to only authorized management workstations

Schedule — requires maintenance window

0/2

Patching may require device reboot — plan for process interruption

HOTFIXUpdate TELSAT marKoni FM Transmitter (both Markoni-D and Markoni-DH models) to firmware version 2.0.1 or later

WORKAROUNDIf remote access to the transmitter is necessary, use a Virtual Private Network (VPN) with up-to-date encryption and authentication, and restrict VPN access to specific administrator accounts

Long-term hardening

0/1

HARDENINGImplement network segmentation to place transmitter control systems behind firewalls and separate from office/business networks

CVEs (4)

CVE-2024-39373 CVE-2024-39374 CVE-2024-39375 CVE-2024-39376

View full CISA ICS-CERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/b7ff3394-a02a-42bd-b3f0-607092afe591