Elber Communications Equipment

Act NowCVSS 9.8ICS-CERT ICSA-25-035-03Feb 4, 2025

Attack path

Attack VectorNetwork

Auth RequiredNone

ComplexityLow

User InteractionNone needed

Summary

Elber broadcast and satellite communications equipment contains authentication bypass and authorization flaws (CWE-288, CWE-912) that allow unauthenticated remote attackers to gain administrative access. Affected products include Signum DVB-S/S2 IRD (<=1.999), Cleber/3 Broadcast Multi-Purpose Platform (1.0), Reble610 M/ODU XPIC IP-ASI-SDH (0.01), ESE DVB-S/S2 Satellite Receiver (<=1.5.179), and Wayber Analog/Digital Audio STL (4). Elber does not plan to patch these vulnerabilities as the products are end-of-life or approaching end-of-life status.

What this means

What could happen

An attacker with network access to these broadcast and satellite receiver devices could gain unauthorized administrative control, potentially disrupting signal distribution, transmission quality, or broadcast operations.

Who's at risk

Broadcast and satellite communications operators who use Elber Signum DVB-S/S2 receivers, Cleber/3 platforms, Reble610 IP-ASI-SDH converters, ESE DVB-S/S2 satellite receivers, or Wayber audio STL devices should be concerned. These devices are typically deployed in broadcast distribution, satellite uplink/downlink, and signal transport chains in television and radio networks.

How it could be exploited

An attacker can reach the device over the network and exploit authentication or authorization flaws (CWE-288, CWE-912) to gain admin access without valid credentials or user interaction. No special network position or complexity is required.

Prerequisites

Network access to the device (no specific port or protocol stated in advisory)
No valid credentials or authentication bypass required

remotely exploitableno authentication requiredlow complexityhigh EPSS score (15.8%)no patch availableend-of-life equipment

Exploitability

Likely to be exploited — EPSS score 15.8%

Affected products (5)

5 EOL

ProductAffected VersionsFix Status

Signum DVB-S/S2 IRD: <=1.999≤ 1.999No fix (EOL)

Cleber/3 Broadcast Multi-Purpose Platform: 1.01.0No fix (EOL)

Reble610 M/ODU XPIC IP-ASI-SDH: 0.010.01No fix (EOL)

ESE DVB-S/S2 Satellite Receiver: <=1.5.179≤ 1.5.179No fix (EOL)

Wayber Analog/Digital Audio STL: 44No fix (EOL)

Remediation & Mitigation

0/4

Do now

0/3

HARDENINGRestrict network access to affected devices; do not expose them to the internet or untrusted networks

HARDENINGPlace affected devices behind a firewall and isolate them from business/corporate networks

HARDENINGIf remote access is required, use a VPN to encrypted network connections and restrict VPN access to authorized personnel only

Mitigations - no patch available

0/1

The following products have reached End of Life with no planned fix: Signum DVB-S/S2 IRD: <=1.999, Cleber/3 Broadcast Multi-Purpose Platform: 1.0, Reble610 M/ODU XPIC IP-ASI-SDH: 0.01, ESE DVB-S/S2 Satellite Receiver: <=1.5.179, Wayber Analog/Digital Audio STL: 4. Apply the following compensating controls:

HARDENINGPlan replacement or decommissioning of affected end-of-life equipment; contact Elber customer support for migration options

CVEs (2)

CVE-2025-0674 CVE-2025-0675

View full CISA ICS-CERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/0bc28b6e-cb80-4965-9977-4b19fd13c01d

Get OT security insights every Tuesday

Advisory breakdowns, a weekly summary, and incident analyses for the people actually defending OT environments. Free, no account required.