Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistTenableCVELIST:CVE-2019-3929
HistoryApr 30, 2019 - 8:21 p.m.

CVE-2019-3929

2019-04-3020:21:09
CWE-79
tenable
www.cve.org

10 High

AI Score

Confidence

High

0.974 High

EPSS

Percentile

99.9%

JSON

The Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1, Barco wePresent WiPG-1000P firmware 2.3.0.10, Barco wePresent WiPG-1600W before firmware 2.4.1.19, Extron ShareLink 200/250 firmware 2.0.3.4, Teq AV IT WIPS710 firmware 1.1.0.7, SHARP PN-L703WA firmware 1.4.2.3, Optoma WPS-Pro firmware 1.0.0.5, Blackbox HD WPS firmware 1.0.0.5, InFocus LiteShow3 firmware 1.0.16, and InFocus LiteShow4 2.0.0.7 are vulnerable to command injection via the file_transfer.cgi HTTP endpoint. A remote, unauthenticated attacker can use this vulnerability to execute operating system commands as root.

CNA Affected

[
  {
    "product": "Crestron AirMedia, Barco WePresent, Extron ShareLink, Teq AV IT WIPS710, SHARP PN-L703WA, Optoma WPS-Pro, Blackbox HD WPS, InFocus LiteShow3, and InFocus LiteShow4.",
    "vendor": "Crestron",
    "versions": [
      {
        "status": "affected",
        "version": "Crestron AM-100 firmware 1.6.0.2"
      },
      {
        "status": "affected",
        "version": "Crestron AM-101 firmware 2.7.0.1"
      },
      {
        "status": "affected",
        "version": "Barco wePresent WiPG-1000P firmware 2.3.0.10"
      },
      {
        "status": "affected",
        "version": "Barco wePresent WiPG-1600W before firmware 2.4.1.19"
      },
      {
        "status": "affected",
        "version": "Extron ShareLink 200/250 firmware 2.0.3.4"
      },
      {
        "status": "affected",
        "version": "Teq AV IT WIPS710 firmware 1.1.0.7"
      },
      {
        "status": "affected",
        "version": "SHARP PN-L703WA firmware 1.4.2.3"
      },
      {
        "status": "affected",
        "version": "Optoma WPS-Pro firmware 1.0.0.5"
      },
      {
        "status": "affected",
        "version": "Blackbox HD WPS firmware 1.0.0.5"
      },
      {
        "status": "affected",
        "version": "InFocus LiteShow3 firmware 1.0.16"
      },
      {
        "status": "affected",
        "version": "and InFocus LiteShow4 2.0.0.7"
      }
    ]
  }
]

Related

cisa_kev 1
nuclei 1
packetstorm 2
githubexploit 1
zdt 2
prion 1
attackerkb 1
exploitpack 1
checkpoint_advisories 1
nvd 1
cve 1
exploitdb 1
threatpost 1
cisa_kev
cisa_kev
Crestron Multiple Products Command Injection Vulnerability
2022-04-15 00:00:00
nuclei
nuclei
Barco/AWIND OEM Presentation Platform - Remote Command Injection
2021-11-05 15:28:18
packetstorm
packetstorm
Barco WePresent file_transfer.cgi Command Injection
2020-01-14 00:00:00
Barco/AWIND OEM Presentation Platform Unauthenticated Remote Command Injection
2019-05-03 00:00:00
githubexploit
githubexploit
Exploit for OS Command Injection in Crestron Am-100 Firmware
2019-09-17 16:23:04
zdt
zdt
Barco / AWIND OEM Presentation Platform Unauthenticated Remote Command Injection Vulnerability
2019-05-03 00:00:00
Barco WePresent - file_transfer.cgi Command Injection Exploit
2020-01-15 00:00:00
prion
prion
Command injection
2019-04-30 21:29:00
attackerkb
attackerkb
CVE-2019-3929
2019-04-30 00:00:00
exploitpack
exploitpack
Crestron AMBarco wePresent WiPGExtron ShareLinkTeq AV ITSHARP PN-L703WAOptoma WPS-ProBlackbox HD WPSInFocus LiteShow - Remote Command Injection
2019-05-03 00:00:00
checkpoint_advisories
checkpoint_advisories
Barco EOM Presentation platform Remote Code Execution (CVE-2019-3929)
2019-05-12 00:00:00
nvd
nvd
CVE-2019-3929
2019-04-30 21:29:00
cve
cve
CVE-2019-3929
2019-04-30 21:29:00
exploitdb
exploitdb
Crestron AM/Barco wePresent WiPG/Extron ShareLink/Teq AV IT/SHARP PN-L703WA/Optoma WPS-Pro/Blackbox HD WPS/InFocus LiteShow - Remote Command Injection
2019-05-03 00:00:00
threatpost
threatpost
Critical Flaws Found in Eight Wireless Presentation Systems
2019-05-02 21:15:34

10 High

AI Score

Confidence

High

0.974 High

EPSS

Percentile

99.9%

JSON
Related for CVELIST:CVE-2019-3929
cisa_kev1nuclei1packetstorm2githubexploit1zdt2prion1attackerkb1exploitpack1checkpoint_advisories1nvd1cve1exploitdb1threatpost1