CVE-2024-58277 HIGH

CVE-2024-58277: R Radio Network FM Transmitter 1.07 System Settings Disclosure

Vendor R Radio Network
Product Radio Network FM Transmitter
Weakness CWE-312 · Cleartext storage
Published December 4, 2025
Last update May 14, 2026

CVSS base score

8.7/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

What the vulnerability does

01Description

R Radio Network FM Transmitter 1.07 allows unauthenticated attackers to access the admin user's password through the system.cgi endpoint, enabling authentication bypass and FM station setup access.

Key dates

02Disclosure timeline

December 4, 2025 CVE published
May 14, 2026 Record updated