Crestron

Am-101 Firmware

15 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2019-3929

Warning Exploit
  • EPSS 93.99%
  • Published 30.04.2019 21:29:00
  • Last modified 07.02.2025 15:00:23

The Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1, Barco wePresent WiPG-1000P firmware 2.3.0.10, Barco wePresent WiPG-1600W before firmware 2.4.1.19, Extron ShareLink 200/250 firmware 2.0.3.4, Teq AV IT WIPS710 firmware 1.1.0.7, ...

10

CVE-2019-3930

Exploit
  • EPSS 15.34%
  • Published 30.04.2019 21:29:00
  • Last modified 21.11.2024 04:42:53

The Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1, Barco wePresent WiPG-1000P firmware 2.3.0.10, Barco wePresent WiPG-1600W before firmware 2.4.1.19, Extron ShareLink 200/250 firmware 2.0.3.4, Teq AV IT WIPS710 firmware 1.1.0.7, ...

9

CVE-2019-3931

Exploit
  • EPSS 4.1%
  • Published 30.04.2019 21:29:00
  • Last modified 21.11.2024 04:42:53

Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 are vulnerable to argumention injection to the curl binary via crafted HTTP requests to return.cgi. A remote, authenticated attacker can use this vulnerability to upload files to ...

9.8

CVE-2019-3932

Exploit
  • EPSS 8.3%
  • Published 30.04.2019 21:29:00
  • Last modified 21.11.2024 04:42:53

Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 are vulnerable to authentication bypass due to a hard-coded password in return.tgi. A remote, unauthenticated attacker can use this vulnerability to control external devices via t...

5.3

CVE-2019-3933

Exploit
  • EPSS 0.44%
  • Published 30.04.2019 21:29:00
  • Last modified 21.11.2024 04:42:53

Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 allows anyone to bypass the presentation code simply by requesting /images/browserslide.jpg via HTTP. A remote, unauthenticated attacker can use this vulnerability to watch a slid...