← Voltar para CVEs
CVE-2018-11229
N/ADescricao
Crestron TSW-1060, TSW-760, TSW-560, TSW-1060-NC, TSW-760-NC, and TSW-560-NC devices before 2.001.0037.001 allow unauthenticated remote code execution via command injection in Crestron Toolbox Protocol (CTP).
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado6/8/2018
Ultima modificacao11/21/2024
Fontenvd
Avistamentos honeypot0
Produtos afetados
crestron:crestron_toolbox_protocol_firmwarecrestron:dmc-strcrestron:tsw-1060crestron:tsw-1060-nccrestron:tsw-560crestron:tsw-560-nccrestron:tsw-760crestron:tsw-760-nc
Fraquezas (CWE)
CWE-78
Referencias
http://www.securityfocus.com/bid/105051(cve@mitre.org)
https://ics-cert.us-cert.gov/advisories/ICSA-18-221-01(cve@mitre.org)
http://www.securityfocus.com/bid/105051(af854a3a-2127-422b-91ae-364da2661108)
https://ics-cert.us-cert.gov/advisories/ICSA-18-221-01(af854a3a-2127-422b-91ae-364da2661108)
https://support.crestron.com/app/answers/answer_view/a_id/5471/~/the-latest-details-from-crestron-on-security-and-safety-on-the-internet(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.