Vulnerabilities > Trms

DATE	CVE	VULNERABILITY TITLE	RISK
2019-10-29	CVE-2018-18931	Improper Privilege Management vulnerability in Trms Carousel Digital Signage 7.0.4.104 An issue was discovered in the Tightrope Media Carousel digital signage product 7.0.4.104. network low complexity trms CWE-269	8.8
2019-10-29	CVE-2018-18930	Unrestricted Upload of File with Dangerous Type vulnerability in Trms Carousel Digital Signage 7.0.4.104 The Tightrope Media Carousel digital signage product 7.0.4.104 contains an arbitrary file upload vulnerability in the Manage Bulletins/Upload feature, which can be leveraged to gain remote code execution. network low complexity trms CWE-434	8.8
2019-10-29	CVE-2018-18929	Use of Hard-coded Credentials vulnerability in Trms Seneca HDN Firmware 7.0.4.104 The Tightrope Media Carousel Seneca HDn Windows-based appliance 7.0.4.104 is shipped with a default local administrator username and password. network low complexity trms CWE-798	8.8
2019-08-26	CVE-2019-13020	Server-Side Request Forgery (SSRF) vulnerability in Trms Tightrope Media Carousel The fetch API in Tightrope Media Carousel before 7.1.3 has CarouselAPI/v0/fetch?url= SSRF. network low complexity trms CWE-918 critical	10.0
2018-07-23	CVE-2018-14573	Path Traversal vulnerability in Trms Tightrope Media Carousel Digital Signage A Local File Inclusion (LFI) vulnerability exists in the Web Interface API of TightRope Media Carousel Digital Signage before 7.3.5. local low complexity trms CWE-22	5.5

Vulnerabilities > Trms {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Trms"}]}