CVE-2023-6926

CVSS V2 None CVSS V3 None
Description
There is an OS command injection vulnerability in Crestron AM-300 firmware version 1.4499.00018 which may enable a user of a limited-access SSH session to escalate their privileges to root-level access.
Overview
  • CVE ID
  • CVE-2023-6926
  • Assigner
  • icscert
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-01-23T19:23:08.788Z
  • Last Modified Date
  • 2024-01-23T19:23:08.788Z
References
Reference URL Reference Tags
https://www.cisa.gov/news-events/ics-advisories/icsa-24-023-02 government-resource
History
Created Old Value New Value Data Type Notes
2024-06-25 06:39:13 Added to TrackCVE