Unauthenticated Arbitrary File Upload Vulnerability in DB Electronica Telecomunicazioni Mozart FM Transmitter
CVE-2025-66255

9.9CRITICAL

Key Information:

Vendor

Db Electronica Telecomunicazioni S.p.a.

Status
Mozart Fm Transmitter
Vendor
CVE Published:
26 November 2025

Badges

👾 Exploit Exists

What is CVE-2025-66255?

The Mozart FM Transmitter from DB Electronica Telecomunicazioni contains a vulnerability in the 'upgrade_contents.php' endpoint, which allows unauthenticated users to upload arbitrary files. This flaw stems from a lack of validation for file headers and cryptographic signatures, combined with the absence of enforced .tgz file format requirements. As a result, attackers can exploit this vulnerability to inject malicious firmware packages, potentially leading to remote code execution on affected devices.

Affected Version(s)

Mozart FM Transmitter 30

Mozart FM Transmitter 50

Mozart FM Transmitter 100

References

https://www.abdulmhsblog.com/posts/webfmvulns/
exploittechnical-description

CVSS V4

Score:
9.9
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • 🟡

    Public PoC available

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

Credit

Abdul Mhanni
JSON
.
CVE-2025-66255 : Unauthenticated Arbitrary File Upload Vulnerability in DB Electronica Telecomunicazioni Mozart FM Transmitter