2 matches found
CVE-2019-3910
Crestron AM-100 before firmware version 1.6.0.2 contains an authentication bypass in the web interface's return.cgi script. Unauthenticated remote users can use the bypass to access some administrator functionality such as configuring update sources and rebooting the device...
CVE-2019-3910
The CVE-2019-3910 issue affects Crestron AM-100 devices running firmware before 1.6.0.2. Affected component is the web interface’s return.cgi script, enabling an authentication bypass that allows unauthenticated remote access to administrator-level functions (e.g., configuring update sources and ...