OTPulse
FeedAboutContact

VIMESA VHF/FM Transmitter Blue Plus

Monitor5.3ICS-CERT ICSA-24-298-01Oct 24, 2024
Attack VectorNetwork
Auth RequiredNone
ComplexityLow
User InteractionNone needed
Summary

VIMESA VHF/FM Transmitter Blue Plus version 9.7.1 contains a denial-of-service vulnerability. An attacker with network access to the transmitter can cause it to become unresponsive, disrupting broadcast transmission. The vulnerability requires no credentials or user interaction. VIMESA has not responded to mitigation requests and no patch is available for this version.

What this means
What could happen
An attacker could cause the VHF/FM transmitter to stop responding, disrupting broadcast transmission and forcing manual intervention to restore service.
Who's at risk
Broadcast facilities, including radio stations and emergency alert systems, that use VIMESA VHF/FM transmitters. Any facility relying on continuous transmission service is affected. This includes municipal and public safety communications systems.
How it could be exploited
An attacker with network access to the transmitter can send a specially crafted request that causes the device to become unresponsive (denial-of-service condition). The attack requires no credentials or user interaction.
Prerequisites
  • Network access to the VHF/FM transmitter
  • Transmitter is reachable from the attacker's location (internet or internal network)
  • No authentication required
remotely exploitableno authentication requiredlow complexityno patch availableaffects broadcast/emergency services
Exploitability
Low exploit probability (EPSS 0.4%)
Affected products (1)
ProductAffected VersionsFix Status
VHF/FM Transmitter Blue Plus: v9.7.1v9.7.1No fix (EOL)
Remediation & Mitigation
0/5
Do now
0/2
HARDENINGIsolate VHF/FM transmitter from direct internet access using firewall rules or network segmentation
HARDENINGRestrict network access to the transmitter to only authorized management and monitoring systems
Schedule — requires maintenance window
0/3

Patching may require device reboot — plan for process interruption

HARDENINGIf remote access to the transmitter is required, implement a VPN with up-to-date security patches
HARDENINGMonitor for and block suspicious network traffic to the transmitter
WORKAROUNDContact VIMESA to determine if a firmware update or workaround will be made available
View full CISA ICS-CERT advisory
↑↓ Navigate · Esc Close
API: /api/v1/advisories/819704f8-d342-40f6-b49f-b29e45956e6a