CVSS: 10.0EPSS: 94%CPEs: 24EXPL: 6CVE-2019-3929 – Crestron Multiple Products Command Injection Vulnerability
https://notcve.org/view.php?id=CVE-2019-3929
30 Apr 2019 — The Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1, Barco wePresent WiPG-1000P firmware 2.3.0.10, Barco wePresent WiPG-1600W before firmware 2.4.1.19, Extron ShareLink 200/250 firmware 2.0.3.4, Teq AV IT WIPS710 firmware 1.1.0.7, SHARP PN-L703WA firmware 1.4.2.3, Optoma WPS-Pro firmware 1.0.0.5, Blackbox HD WPS firmware 1.0.0.5, InFocus LiteShow3 firmware 1.0.16, and InFocus LiteShow4 2.0.0.7 are vulnerable to command injection via the file_transfer.cgi HTTP endpoint. A remote, unauthent... • https://packetstorm.news/files/id/155948 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.3EPSS: 1%CPEs: 4EXPL: 0CVE-2019-3928
https://notcve.org/view.php?id=CVE-2019-3928
30 Apr 2019 — Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 allow any user to obtain the presentation passcode via the iso.3.6.1.4.1.3212.100.3.2.7.4 OIDs. A remote, unauthenticated attacker can use this vulnerability to access a restricted presentation or to become the presenter. Crestron AM-100 con versión de firmware 1.6.0.2 y AM-101 con firmware versión 2.7.0.2 permite a cualquier usuario obtener el código de acceso de presentación por medio de la OID iso.3.6.1.4.1.3212.100.3.2.7.4. Un atacan... • https://www.tenable.com/security/research/tra-2019-20 • CWE-284: Improper Access Control •
CVSS: 9.8EPSS: 2%CPEs: 4EXPL: 1CVE-2019-3927
https://notcve.org/view.php?id=CVE-2019-3927
30 Apr 2019 — Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 anyone can change the administrator and moderator passwords via the iso.3.6.1.4.1.3212.100.3.2.8.1 and iso.3.6.1.4.1.3212.100.3.2.8.2 OIDs. A remote, unauthenticated attacker can use this vulnerability to change the admin or moderator user's password and gain access to restricted areas on the HTTP interface. En Crestron AM-100 con versión de firmware 1.6.0.2 y AM-101 con el firmware versión 2.7.0.2 cualquiera puede cambiar las contraseña... • https://www.tenable.com/security/research/tra-2019-20 • CWE-284: Improper Access Control CWE-287: Improper Authentication •
CVSS: 10.0EPSS: 30%CPEs: 4EXPL: 1CVE-2019-3926
https://notcve.org/view.php?id=CVE-2019-3926
30 Apr 2019 — Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 are vulnerable to command injection via SNMP OID iso.3.6.1.4.1.3212.100.3.2.14.1. A remote, unauthenticated attacker can use this vulnerability to execute operating system commands as root. Crestron AM-100 con firmware 1.6.0.2 y AM-101 con firmware 2.7.0.2 son vulnerables a la inyección de comandos mediante SNMP OID iso.3.6.1.4.4.1.3212.100.3.2.14.1. Un atacante remoto no autenticado puede utilizar esta vulnerabilidad para ejecutar coman... • https://www.tenable.com/security/research/tra-2019-20 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 10.0EPSS: 30%CPEs: 4EXPL: 1CVE-2019-3925
https://notcve.org/view.php?id=CVE-2019-3925
30 Apr 2019 — Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 are vulnerable to command injection via SNMP OID iso.3.6.1.4.1.3212.100.3.2.9.3. A remote, unauthenticated attacker can use this vulnerability to execute operating system commands as root. Crestron AM-100 con firmware 1.6.0.2 y AM-101 con firmware 2.7.0.2 son vulnerables a la inyección de comandos mediante SNMP OID iso.3.6.1.4.1.3212.100.3.2.9.3. Un atacante remoto no autenticado puede utilizar esta vulnerabilidad para ejecutar comandos ... • https://www.tenable.com/security/research/tra-2019-20 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.1EPSS: 5%CPEs: 2EXPL: 1CVE-2019-3910
https://notcve.org/view.php?id=CVE-2019-3910
18 Jan 2019 — Crestron AM-100 before firmware version 1.6.0.2 contains an authentication bypass in the web interface's return.cgi script. Unauthenticated remote users can use the bypass to access some administrator functionality such as configuring update sources and rebooting the device. Crestron AM-100, en versiones de firmware anteriores a la 1.6.0.2, contiene una omisión de autenticación en el script "return.cgi" de la interfaz web. Usuarios remotos no autenticados pueden hacer uso de la omisión para acceder a alguna... • https://www.tenable.com/security/research/tra-2019-02 •
CVSS: 10.0EPSS: 0%CPEs: 15EXPL: 0CVE-2018-10630 – Crestron Multiple Products CTP Console Incorrect Default Permissions Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2018-10630
10 Aug 2018 — For Crestron TSW-X60 version prior to 2.001.0037.001 and MC3 version prior to 1.502.0047.001, The devices are shipped with authentication disabled, and there is no indication to users that they need to take steps to enable it. When compromised, the access to the CTP console is left open. Para las versiones anteriores a la 2.001.0037.001 de Crestron TSW-X60 y las versiones anteriores a la 1.502.0047.001 de MC3, los dispositivos se distribuyen con la autenticación deshabilitada y no existen indicaciones de qu... • http://www.securityfocus.com/bid/105051 • CWE-284: Improper Access Control CWE-287: Improper Authentication •
CVSS: 8.8EPSS: 2%CPEs: 15EXPL: 3CVE-2018-13341 – Crestron Multiple Products CTP Console Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2018-13341
10 Aug 2018 — Crestron TSW-X60 all versions prior to 2.001.0037.001 and MC3 all versions prior to 1.502.0047.00, The passwords for special sudo accounts may be calculated using information accessible to those with regular user privileges. Attackers could decipher these passwords, which may allow them to execute hidden API calls and escape the CTP console sandbox environment with elevated privileges. Para las versiones anteriores a la 2.001.0037.001 de Crestron TSW-X60 y las versiones anteriores a la 1.502.0047.001 de MC3... • https://github.com/Rajchowdhury420/CVE-2018-13341 •
CVSS: 7.2EPSS: 72%CPEs: 4EXPL: 2CVE-2017-16709 – AwindInc SNMP Service - Command Injection
https://notcve.org/view.php?id=CVE-2017-16709
11 Jul 2018 — Crestron Airmedia AM-100 devices with firmware before 1.6.0 and AM-101 devices with firmware before 2.7.0 allows remote authenticated administrators to execute arbitrary code via unspecified vectors. Los dispositivos Crestron Airmedia AM-100 con firmware en versiones anteriores a la 1.6.0 y dispositivos AM-101 con firmware en versiones anteriores a la 2.7.0 permite que administradores autenticados remotos ejecuten código arbitrario mediante vectores sin especificar. • https://packetstorm.news/files/id/154362 •
CVSS: 4.8EPSS: 0%CPEs: 4EXPL: 0CVE-2017-16710
https://notcve.org/view.php?id=CVE-2017-16710
11 Jul 2018 — Cross-site scripting (XSS) vulnerability in Crestron Airmedia AM-100 devices with firmware before 1.6.0 and AM-101 devices with firmware before 2.7.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad Cross-Site Scripting (XSS) en dispositivos Crestron Airmedia AM-100 con firmware en versiones anteriores a la 1.6.0 y dispositivos AM-101 con firmware en versiones anteriores a la 2.7.0 permite a atacantes remotos inyectar scripts web o HTML arbitrarios utili... • https://support.crestron.com/app/answers/answer_view/a_id/5471/~/the-latest-details-from-crestron-on-security-and-safety-on-the-internet#CVE-2017-16710 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •