Vulnerabilities > Crestron > Crestron Toolbox Protocol Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2018-06-08 CVE-2018-11228 Code Injection vulnerability in Crestron Toolbox Protocol Firmware 1.502.0047.001
Crestron TSW-1060, TSW-760, TSW-560, TSW-1060-NC, TSW-760-NC, and TSW-560-NC devices before 2.001.0037.001 allow unauthenticated remote code execution via a Bash shell service in Crestron Toolbox Protocol (CTP).
network
low complexity
crestron CWE-94
critical
9.8
2018-06-08 CVE-2018-11229 OS Command Injection vulnerability in Crestron Toolbox Protocol Firmware 1.502.0047.001
Crestron TSW-1060, TSW-760, TSW-560, TSW-1060-NC, TSW-760-NC, and TSW-560-NC devices before 2.001.0037.001 allow unauthenticated remote code execution via command injection in Crestron Toolbox Protocol (CTP).
network
low complexity
crestron CWE-78
critical
9.8