An issue was discovered on Cerner Connectivity Engine (CCE) 4 devices. The hostname, timezone, and NTP server configurations on the CCE device are vulnerable to command injection by sending a crafted configuration file over the network.
CPE | Name | Operator | Version |
---|---|---|---|
connectivity_engine_4_firmware | lt | 201812 |