Vulnerabilities in Crestron

24 results

CVE-2019-3929CRITICALThe Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1, Barco wePresent WiPG-1000P firmware 2.3.0.10, Barco wePresent WiPG-1EPSS 99.0%KEV CVE-2019-3932—Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 are vulnerable to authentication bypass due to a hard-coded password EPSS 36.3%CVE-2019-3934—Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 allows anyone to bypass the presentation code sending a crafted HTTP EPSS 7.7%CVE-2019-3930—The Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1, Barco wePresent WiPG-1000P firmware 2.3.0.10, Barco wePresent WiPG-1EPSS 7.0%CVE-2019-3926—Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 are vulnerable to command injection via SNMP OID iso.3.6.1.4.1.3212.1EPSS 6.9%CVE-2019-3925—Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 are vulnerable to command injection via SNMP OID iso.3.6.1.4.1.3212.1EPSS 6.9%CVE-2019-3933—Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 allows anyone to bypass the presentation code simply by requesting /iEPSS 5.9%CVE-2019-3931—Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 are vulnerable to argumention injection to the curl binary via crafteEPSS 5.9%CVE-2019-3935—Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 allows anyone to act as a moderator to a slide show via crafted HTTP EPSS 3.3%CVE-2019-3939—Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 use default credentials admin/admin and moderator/moderator for the wEPSS 2.8%CVE-2018-5553CRITICALCrestron DGE-100 Console Command Injection (FIXED)EPSS 2.5%CVE-2019-3927—Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 anyone can change the administrator and moderator passwords via the iEPSS 2.2%CVE-2019-3936—Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 is vulnerable to denial of service via a crafted request to TCP port EPSS 2.1%CVE-2019-3928—Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 allow any user to obtain the presentation passcode via the iso.3.6.1.EPSS 1.8%CVE-2023-6926HIGHImproper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in Crestron AM-300EPSS 0.5%CVE-2025-47415MEDIUMRECWAVE Filepath TraversalEPSS 0.4%CVE-2025-47417MEDIUMEnable Debug ImagesEPSS 0.4%CVE-2025-47416MEDIUMConsoleFindCommandMatchListEPSS 0.3%CVE-2025-47421HIGHPrivilege escalation via SCP loginEPSS 0.3%CVE-2025-47418MEDIUMRecordingEPSS 0.3%

← previouspage 1 / 2next →