Vulnerabilities > Crestron > TSW 1060

DATE CVE VULNERABILITY TITLE RISK
2018-06-08 CVE-2018-11229 OS Command Injection vulnerability in Crestron Toolbox Protocol Firmware
Crestron TSW-1060, TSW-760, TSW-560, TSW-1060-NC, TSW-760-NC, and TSW-560-NC devices before 2.001.0037.001 allow unauthenticated remote code execution via command injection in Crestron Toolbox Protocol (CTP).
network
low complexity
crestron CWE-78
7.5
7.5
2018-06-08 CVE-2018-11228 Code Injection vulnerability in Crestron Toolbox Protocol Firmware
Crestron TSW-1060, TSW-760, TSW-560, TSW-1060-NC, TSW-760-NC, and TSW-560-NC devices before 2.001.0037.001 allow unauthenticated remote code execution via a Bash shell service in Crestron Toolbox Protocol (CTP).
network
low complexity
crestron CWE-94
critical
 10.0
10