Directory traversal vulnerability in cgi-bin/login.cgi on Crestron AirMedia AM-100 devices with firmware before 1.4.0.13 allows remote attackers to read arbitrary files via a … (dot dot) in the src parameter.
CPE | Name | Operator | Version |
---|---|---|---|
airmedia_am-100_firmware | le | 1.4.0.12 |