The device allows an unauthenticated attacker to bypass authentication and modify the cookie to reveal hidden pages that allows more critical operations to the transmitter.
https://www.cisa.gov/news-events/ics-advisories/icsa-24-107-02
https://www.cisa.gov/news-events/ics-advisories/icsa-24-107-02