Crestron 漏洞

时间轴

类型

Not Defined40

产品

Crestron AM-10016
Crestron AM-10115
Crestron DM-TXRX-100-STR6
Crestron AirMedia4
Crestron AirMedia AM-1004

修正

Official Fix20
Temporary Fix0
Workaround13
Unavailable0
Not Defined7

易受攻击性

High0
Functional1
Proof-of-Concept2
Unproven0
Not Defined37

访问向量

Not Defined0
Physical0
Local3
Adjacent3
Network34

身份验证

Not Defined0
High1
Low10
None29

用户交互

Not Defined0
Required1
None39

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤41
≤51
≤63
≤77
≤84
≤913
≤1011

CVSSv3 Temp

≤10
≤20
≤30
≤41
≤51
≤65
≤77
≤84
≤911
≤1011

VulDB

≤10
≤20
≤31
≤41
≤51
≤66
≤73
≤813
≤94
≤1011

NVD

≤10
≤20
≤30
≤40
≤51
≤63
≤70
≤88
≤96
≤1019

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤91
≤101

供应商

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

零日攻击

<1k4
<2k16
<5k20
<10k0
<25k0
<50k0
<100k0
≥100k0

本日攻击

<1k38
<2k1
<5k1
<10k0
<25k0
<50k0
<100k0
≥100k0

攻击市场容量

🔴 CTI 活动

Affected Products (22): 3-Series Control Systems (1), AM-100 (16), AM-101 (15), AM-300 (1), AirMedia (4), AirMedia AM-100 (4), AirMedia AM-101 (2), Console (1), DM-NVX-DIR (1), DM-NVX-DIR80 (1), DM-NVX-ENT (1), DM-TXRX-100-STR (6), DMC-STRO (1), HD-MD4X2-4K-E (1), MC3 (2), TSW-560 (2), TSW-560-NC (2), TSW-760 (2), TSW-760-NC (2), TSW-1060 (2), TSW-1060-NC (2), TSW-X60 (2)

已发布BaseTemp漏洞Prod修正EPSSCTICVE
2024-01-238.07.9Crestron AM-300 权限升级未知Not DefinedOfficial Fix0.000430.04CVE-2023-6926
2023-07-185.55.4Crestron 3-Series Control Systems BACnet Packet 拒绝服务未知Not DefinedOfficial Fix0.000460.02CVE-2023-38405
2022-09-238.88.6Crestron AirMedia 错误配置未知Not DefinedOfficial Fix0.001040.02CVE-2022-40298
2022-09-148.88.8Crestron AirMedia Installation 权限升级未知Not DefinedNot Defined0.001040.00CVE-2022-34100
2022-09-148.18.0Crestron AirMedia Command Prompt 权限升级未知Not DefinedOfficial Fix0.000870.00CVE-2022-34102
2022-09-146.36.0Crestron AirMedia 权限升级未知Not DefinedOfficial Fix0.000760.00CVE-2022-34101
2022-01-154.34.3Crestron HD-MD4X2-4K-E Administrative Web Interface aj.html 信息公开未知Not DefinedNot Defined0.032280.00CVE-2022-23178
2021-07-316.36.0Crestron DM-NVX-DIR/DM-NVX-DIR80/DM-NVX-ENT WebSocket Request Remote Code Execution未知Not DefinedOfficial Fix0.000920.00CVE-2020-16839
2019-11-278.58.5Crestron DMC-STRO Ping 权限升级未知Not DefinedNot Defined0.020480.03CVE-2019-18184
2019-04-308.58.4Crestron AM-100/AM-101 Web Interface 弱身份验证未知Not DefinedWorkaround0.006670.03CVE-2019-3939

30 更多条目未显示

🔒 Login Required

You need to signup and login to see more of the remaining 30 results.

上一步一览下一步

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!