EUVD-2025-27258

Malicious code in bioql PyPI...

EUVD-2025-27588

Malicious code in bioql PyPI...

CVE-2025-47415

Summary (CVE-2025-47415): CRESTRON TOUCHSCREENS x70 are affected by a path-traversal vulnerability. Affected hardware: TSW-760 and TSW-1060. Affected firmware: 3.000.0110.001 and earlier. Fixed firmware: 3.001.0031.001. The issue allows relative path traversal and is limited to network-accessible...

CVE-2025-47415 RECWAVE Filepath Traversal

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in CRESTRON TOUCHSCREENS x70 allows Relative Path Traversal.This issue affects TOUCHSCREENS x70: from 3.000.0110.001 before 3.001.0031.001. Confirmed Affected Hardware: TSW-760, TSW-1060 Confirmed Affected...

CVE-2025-47416

A vulnerability exists in the ConsoleFindCommandMatchList function in libsymproc. so imported by ctpd that may lead to unauthorized execution of an attacker-defined file that gets prioritized by the ConsoleFindCommandMatchList. A third-party researcher discovered that the...

CVE-2025-47416 ConsoleFindCommandMatchList

A vulnerability exists in the ConsoleFindCommandMatchList function in libsymproc. so imported by ctpd that may lead to unauthorized execution of an attacker-defined file that gets prioritized by the ConsoleFindCommandMatchList. A third-party researcher discovered that the...

CVE-2025-47416

CVE-2025-47416 affects Crestron touch panels TSW-760 and TSW-1060. The vulnerability resides in the ConsoleFindCommandMatchList function in libsymproc.so imported by ctpd, which may lead to unauthorized execution of an attacker-defined file prioritized by ConsoleFindCommandMatchList. The issue is...

PT-2025-36735

Name of the Vulnerable Software and Affected Versions: TSW-760 versions prior to 3.001.0031.001 TSW-1060 versions prior to 3.001.0031.001 Description: A vulnerability exists in the ConsoleFindCommandMatchList function within libsymproc.so imported by ctpd that may allow an attacker to execute an...

PT-2025-36922

Name of the Vulnerable Software and Affected Versions: CRESTRON TOUCHSCREENS x70 versions 3.000.0110.001 through 3.001.0030.000 Description: A path traversal vulnerability exists in CRESTRON TOUCHSCREENS x70, allowing relative path traversal. This issue affects TSW-760 and TSW-1060 hardware runni...

Code Execution Vulnerabilities in Multiple Crestron Products

Crestron TSW-1060 and others are touch screen devices from Crestron Electronics, USA. A security vulnerability exists in several Crestron products. The vulnerability can be exploited by remote attackers to execute code with the help of the Bash shell service in the Crestron Toolbox Protocol CTP...

CVE-2018-11228

CVE-2018-11228 affects Crestron TSW-1060/760/560 and TSW-1060-NC/760-NC/560-NC devices pre-2.001.0037.001, where an unauthenticated remote code execution is possible via a Bash shell service in the Crestron Toolbox Protocol (CTP). Connected advisories describe similar CTP console command injectio...