The webupgrade function on the Cohu 3960HD does not verify the firmware upgrade files or process, allowing an malicious user to upload a specially crafted postinstall.sh file that will be executed with "root" privileges.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cohuhd 3960hd_firmware - |