Infocus: >> In3128hd Firmware Security Vulnerabilities
The InFocus IN3128HD projector with firmware 0.26 does not restrict access to cgi-bin/webctrl.cgi.elf, which allows remote attackers to modify the DHCP server and device IP configuration, reboot the device, change the device name, and have other unspecified impact via a crafted request.
CVSS Score
9.4
EPSS Score
0.014
Published
2015-05-18
The InFocus IN3128HD projector with firmware 0.26 allows remote attackers to bypass authentication via a direct request to main.html.
CVSS Score
10.0
EPSS Score
0.045
Published
2015-05-18