← Back to Search

Crestron (Multiple Products)

2022-04-15 · Severity 5/10 — Medium · Unknown
Incident Summary

Multiple Crestron products are vulnerable to command injection via the file_transfer.cgi HTTP endpoint. A remote, unauthenticated attacker can use this vulnerability to execute operating system comman

Sources
https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Details
Records Affected
Unknown
Industry
Technology
Headquarters
Date Reported
2022-04-15
Related Breaches

No related breaches in the last 90 days.