Lucene search
K

414 matches found

Nuclei
Nuclei
added 2 days ago87 views

Crestron Device - Credentials Disclosure

An issue was discovered on Crestron HD-MD4X2-4K-E 1.0.0.2159 devices. When the administrative web interface of the HDMI switcher is accessed unauthenticated, user credentials are disclosed that are valid to authenticate to the web interface. Specifically, aj.html sends a JSON document with uname...

10CVSS7AI score0.75711EPSS
Exploits5References5
Nuclei
Nuclei
added 2026/07/07 4:50 p.m.79 views

Barco/AWIND OEM Presentation Platform - Remote Command Injection

The Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1, Barco wePresent WiPG-1000P firmware 2.3.0.10, Barco wePresent WiPG-1600W before firmware 2.4.1.19, Extron ShareLink 200/250 firmware 2.0.3.4, Teq AV IT WIPS710 firmware 1.1.0.7, SHARP PN-L703WA firmware 1.4.2.3, Optoma WPS-Pr...

10CVSS7.3AI score0.98952EPSS
Exploits10References5
RedhatCVE
RedhatCVE
added 2026/05/06 8:21 p.m.8 views

CVE-2026-7865

A hidden console command is vulnerable to command injection flaw when control characters are passed to its second argument. A third party researcher Eugene Lim had discovered vulnerability in the way console command passes to a popen function call. Attackers with authenticated access to SSH conso...

7.4CVSS5.8AI score0.00753EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/05 6:33 p.m.7 views

EUVD-2026-27394

A hidden console command is vulnerable to command injection flaw when control characters are passed to its second argument. A third party researcher Eugene Lim had discovered vulnerability in the way console command passes to a popen function call. Attackers with authenticated access to SSH...

7.4CVSS5.8AI score0.00753EPSS
Exploits0References3
NVD
NVD
added 2026/05/05 4:16 p.m.22 views

CVE-2026-7865

A hidden console command is vulnerable to command injection flaw when control characters are passed to its second argument. A third party researcher Eugene Lim had discovered vulnerability in the way console command passes to a popen function call. Attackers with authenticated access to SSH...

7.4CVSS0.00753EPSS
Exploits0References2
CVE
CVE
added 2026/05/05 3:5 p.m.18 views

CVE-2026-7865

The CVE-2026-7865 entry describes a vulnerability in Crestron devices where a hidden console command can be exploited to perform command injection by passing control characters to the second argument of a popen call. Affected software is the Crestron SSH console exposed on eligible devices; the u...

7.4CVSS5.8AI score0.00753EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/05 3:5 p.m.4 views

CVE-2026-7865

A hidden console command is vulnerable to command injection flaw when control characters are passed to its second argument. A third party researcher Eugene Lim had discovered vulnerability in the way console command passes to a popen function call. Attackers with authenticated access to SSH...

7.4CVSS5.8AI score0.00753EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2026/05/05 12:0 a.m.12 views

Crestron Touchpanels 参数注入漏洞

Crestron Touchpanels are a series of intelligent network touchscreen devices developed by Crestron Corporation in the United States. These devices are used for scheduling in enterprise meeting rooms, controlling audio-visual systems, and automating smart buildings. Crestron Touchpanels have a...

7.4CVSS5.8AI score0.00753EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/05 12:0 a.m.14 views

PT-2026-37084

Name of the Vulnerable Software and Affected Versions Crestron devices affected versions not specified Description A hidden console command contains a command injection flaw occurring when control characters are passed to its second argument. This issue exists in the way the console command is...

7.4CVSS5.9AI score0.00753EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/01/09 10:17 a.m.10 views

CVE-2019-18184

Crestron DMC-STRO 1.0 devices allow remote command execution as root via shell metacharacters to the ping function...

10CVSS7.5AI score0.07998EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-13545

Malware in sbrugna...

7.8CVSS7.6AI score0.00259EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-13517

Malware in sbrugna...

9.1CVSS9.3AI score0.08559EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2018-3269

Malware in sbrugna...

9.8CVSS9.5AI score0.05707EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-13544

Malware in sbrugna...

7.8CVSS7.6AI score0.00282EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2018-3268

Malware in sbrugna...

10CVSS9.2AI score0.07577EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-13546

Malware in sbrugna...

9.8CVSS9.2AI score0.02764EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-7894

Malware in sbrugna...

4.8CVSS5.1AI score0.00611EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-5288

Malware in sbrugna...

8.8CVSS8.8AI score0.03632EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-2702

Malware in sbrugna...

10CVSS9.5AI score0.10912EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-13535

Malware in sbrugna...

5.3CVSS5.6AI score0.01769EPSS
Exploits0References2
Rows per page
Query Builder