CVE-2020-6969

It is possible to unmask credentials and other sensitive information on “unprotected” project files, which may allow an attacker to remotely access the C-More Touch Panels EA9 series: firmware versions prior to 6.53 and manipulate system configurations...

The vulnerability of the C-more Programming Software for programming and configuring sensor panels (EA9 Series) lies in buffer overflows in the stack, allowing an attacker to execute arbitrary code.

The vulnerability of the C-more Programming Software for programming and configuring sensor panels EA9 Series is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to execute arbitrary code using specially created EAP9 format files...

The vulnerability of the C-more Programming Software for programming and configuring sensor panels (EA9 Series) arises from the execution of operations beyond the buffer boundaries in memory. This allows a hacker to execute arbitrary code.

The vulnerability of the C-more Programming Software EA9 Series for programming and configuring sensor panels is related to the execution of operations outside the buffer in memory when processing EAP9 format files. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

ICSA-20-035-01_AutomationDirect C-More Touch Panels

1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: AutomationDirect Equipment: C-More Touch Panels EA9 Series Vulnerability: Insufficiently Protected Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability may allow an...