CVE-2019-18184

CVE-2019-18184

EPSS 8.0%

Crestron DMC-STRO 1.0 devices allow remote command execution as root via shell metacharacters to the ping function.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.crestron.com/en-US/Products/Video/DigitalMedia-Modular-Matrix/Output-Cards-Blades/DMC-STRO https://www.quantumleap.it/crestron-dmc-stro-remote-root-rce/https://www.quantumleap.it/news/advisory/