CVE-2024-41988 TEM CVE debrief

Who should care

Organizations operating TEM Opera Plus FM Family Transmitters in broadcast infrastructure, particularly those with devices exposed to network access. Security teams responsible for OT/ICS environments, broadcast engineers, and critical infrastructure operators should prioritize assessment and network-level mitigations.

Technical summary

The TEM Opera Plus FM Family Transmitter exposes an unprotected endpoint that accepts MPFS (Microchip Proprietary File System) binary image uploads without requiring authentication. The MPFS file system serves as the foundation for the device's HTTP2 web server module and is also used by the SNMP module. Because this file system can be overwritten via the unauthenticated endpoint, an attacker can upload a malicious binary image that overwrites flash program memory. This enables modification of the web server's main interfaces and execution of arbitrary code on the device. The vulnerability affects firmware version 35.45. No vendor-provided patch is currently available.

Defensive priority

critical

Recommended defensive actions

• Contact TEM directly for additional information regarding mitigation status and potential firmware updates
• Restrict network access to affected transmitter devices at the network perimeter
• Implement network segmentation to isolate affected devices from untrusted networks
• Monitor for unauthorized access attempts to device management interfaces
• Apply defense-in-depth strategies per CISA ICS recommended practices
• Review and implement ICS-CERT cybersecurity best practices for industrial control systems

Evidence notes

Vulnerability description and affected product version (35.45) sourced from CISA CSAF advisory ICSA-24-277-01. CVSS 3.1 vector AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H confirmed via source references. Vendor non-response to CISA coordination documented in remediation section of source advisory.

Official resources