CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Crestron: >> Airmedia Am-100 Firmware >> 1.6.0 Security Vulnerabilities

CVE-2019-3910

Crestron AM-100 before firmware version 1.6.0.2 contains an authentication bypass in the web interface's return.cgi script. Unauthenticated remote users can use the bypass to access some administrator functionality such as configuring update sources and rebooting the device.

CVSS Score

9.1

EPSS Score

0.055

Published

2019-01-18

Page 1

Vulnerabilities

Vulnerable Software

Crestron: >> Airmedia Am-100 Firmware >> 1.6.0 Security Vulnerabilities

Products

Pricing

Contact Us