Crestron Electronics DM-TXRX-100-STR devices with firmware prior to 1.3039.00040 use a hardcoded 0xb9eed4d955a59eb3 X.509 certificate from an OpenSSL Test Certification Authority, which makes it easier for remote malicious users to conduct man-in-the-middle attacks against HTTPS sessions by leveraging the certificate's trust relationship.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
crestron dm-txrx-100-str_firmware 1.2866.00026 |