Vulnerabilities > Trms > Carousel Digital Signage

DATE CVE VULNERABILITY TITLE RISK
2019-10-29 CVE-2018-18931 Improper Privilege Management vulnerability in Trms Carousel Digital Signage 7.0.4.104
An issue was discovered in the Tightrope Media Carousel digital signage product 7.0.4.104.
network
low complexity
trms CWE-269
8.8
8.8
2019-10-29 CVE-2018-18930 Unrestricted Upload of File with Dangerous Type vulnerability in Trms Carousel Digital Signage 7.0.4.104
The Tightrope Media Carousel digital signage product 7.0.4.104 contains an arbitrary file upload vulnerability in the Manage Bulletins/Upload feature, which can be leveraged to gain remote code execution.
network
low complexity
trms CWE-434
8.8
8.8