Directory traversal vulnerability in cgi-bin/login.cgi on Crestron AirMedia AM-100 devices with firmware prior to 1.4.0.13 allows remote malicious users to read arbitrary files via a .. (dot dot) in the src parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
crestron airmedia_am-100_firmware |