CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-50960

A command injection vulnerability in the Nmap diagnostic tool in the admin web console of Extron SMP 111 <=3.01, SMP 351 <=2.16, SMP 352 <= 2.16, and SME 211 <= 3.02, allows a remote authenticated attacker to execute arbitrary commands as root on the underlying operating system.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 72.9%

CVSS Severity

CVSS v3 Score 7.2

References

Products affected by CVE-2024-50960

Extron » Sme 211 » Version: N/A

cpe:2.3:h:extron:sme_211:-
Extron » Smp 111 » Version: N/A

cpe:2.3:h:extron:smp_111:-
Extron » Smp 351 » Version: N/A

cpe:2.3:h:extron:smp_351:-
Extron » Smp 352 » Version: N/A

cpe:2.3:h:extron:smp_352:-
Extron » Sme 211 Firmware » Version: 3.02

cpe:2.3:o:extron:sme_211_firmware:3.02
Extron » Smp 111 Firmware » Version: 3.01

cpe:2.3:o:extron:smp_111_firmware:3.01
Extron » Smp 351 Firmware » Version: 2.16

cpe:2.3:o:extron:smp_351_firmware:2.16
Extron » Smp 352 Firmware » Version: 2.16

cpe:2.3:o:extron:smp_352_firmware:2.16

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-50960

Products

Pricing

Contact Us