cvelistv5 - cve-2018-11228

CVE-2018-11228 (GCVE-0-2018-11228)

Vulnerability from cvelistv5 – Published: 2018-06-08 01:00 – Updated: 2024-08-05 08:01

Summary

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

GHSA-W4CC-FHFH-RGG3

Vulnerability from github – Published: 2022-05-14 01:05 – Updated: 2022-05-14 01:05

Details

Severity ?

9.8 (Critical)


                  
                    CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2018-11228"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-94"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2018-06-08T01:29:00Z",
    "severity": "CRITICAL"
  },
  "details": "Crestron TSW-1060, TSW-760, TSW-560, TSW-1060-NC, TSW-760-NC, and TSW-560-NC devices before 2.001.0037.001 allow unauthenticated remote code execution via a Bash shell service in Crestron Toolbox Protocol (CTP).",
  "id": "GHSA-w4cc-fhfh-rgg3",
  "modified": "2022-05-14T01:05:54Z",
  "published": "2022-05-14T01:05:54Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-11228"
    },
    {
      "type": "WEB",
      "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-221-01"
    },
    {
      "type": "WEB",
      "url": "https://support.crestron.com/app/answers/answer_view/a_id/5471/~/the-latest-details-from-crestron-on-security-and-safety-on-the-internet"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/105051"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

ICSA-18-221-01

Vulnerability from csaf_cisa - Published: 2018-08-09 00:00 - Updated: 2018-08-09 00:00

Summary

Crestron TSW-X60 and MC3

Notes

CISA Disclaimer

This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov

Legal Notice

All information products included in https://us-cert.cisa.gov/ics are provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.

Risk evaluation

Successful exploitation of these vulnerabilities may allow remote code execution with escalated system privileges.

Critical infrastructure sectors

Government Facilities, Commercial Facilities

Countries/areas deployed

Worldwide

Company headquarters location

United States

Recommended Practices

NCCIC recommends users take defensive measures to minimize the risk of exploitation of this vulnerability. Specifically, users should:

Recommended Practices

NCCIC reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.NCCIC also provides a section for control systems security recommended practices on the ICS-CERT web page. Several recommended practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.

Recommended Practices

Additional mitigation guidance and recommended practices are publicly available on the ICS-CERT website in the Technical Information Paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.Organizations observing any suspected malicious activity should follow their established internal procedures and report their findings to NCCIC for tracking and correlation against other incidents.

Exploitability

No known public exploits specifically target these vulnerabilities.

JSON

To clipboard

{
  "document": {
    "acknowledgments": [
      {
        "names": [
          "Jackson Thuraisamy"
        ],
        "organization": "Security Compass",
        "summary": "reporting some of these vulnerabilities to Crestron"
      },
      {
        "names": [
          "Ricky HeadlessZeke Lawshae"
        ],
        "organization": "Trend Micro \u0027s Zero Day Initiative",
        "summary": "reporting these vulnerabilities to NCCIC"
      }
    ],
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Disclosure is not limited",
      "tlp": {
        "label": "WHITE",
        "url": "https://us-cert.cisa.gov/tlp/"
      }
    },
    "lang": "en-US",
    "notes": [
      {
        "category": "general",
        "text": "This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov",
        "title": "CISA Disclaimer"
      },
      {
        "category": "legal_disclaimer",
        "text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.",
        "title": "Legal Notice"
      },
      {
        "category": "summary",
        "text": "Successful exploitation of these vulnerabilities may allow remote code execution with escalated system privileges.",
        "title": "Risk evaluation"
      },
      {
        "category": "other",
        "text": "Government Facilities, Commercial Facilities",
        "title": "Critical infrastructure sectors"
      },
      {
        "category": "other",
        "text": "Worldwide",
        "title": "Countries/areas deployed"
      },
      {
        "category": "other",
        "text": "United States",
        "title": "Company headquarters location"
      },
      {
        "category": "general",
        "text": "NCCIC recommends users take defensive measures to minimize the risk of exploitation of this vulnerability. Specifically, users should:",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "NCCIC reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.NCCIC also provides a section for control systems security recommended practices on the ICS-CERT web page. Several recommended practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "Additional mitigation guidance and recommended practices are publicly available on the ICS-CERT website in the Technical Information Paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.Organizations observing any suspected malicious activity should follow their established internal procedures and report their findings to NCCIC for tracking and correlation against other incidents.",
        "title": "Recommended Practices"
      },
      {
        "category": "other",
        "text": "No known public exploits specifically target these vulnerabilities.",
        "title": "Exploitability"
      }
    ],
    "publisher": {
      "category": "coordinator",
      "contact_details": "Email: CISAservicedesk@cisa.dhs.gov;\n Toll Free: 1-888-282-0870",
      "name": "CISA",
      "namespace": "https://www.cisa.gov/"
    },
    "references": [
      {
        "category": "self",
        "summary": "ICS Advisory ICSA-18-221-01 JSON",
        "url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2018/icsa-18-221-01.json"
      },
      {
        "category": "self",
        "summary": "ICS Advisory ICSA-18-221-01 Web Version",
        "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-18-221-01"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/uscert/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B"
      }
    ],
    "title": "Crestron TSW-X60 and MC3",
    "tracking": {
      "current_release_date": "2018-08-09T00:00:00.000000Z",
      "generator": {
        "engine": {
          "name": "CISA CSAF Generator",
          "version": "1.0.0"
        }
      },
      "id": "ICSA-18-221-01",
      "initial_release_date": "2018-08-09T00:00:00.000000Z",
      "revision_history": [
        {
          "date": "2018-08-09T00:00:00.000000Z",
          "legacy_version": "Initial",
          "number": "1",
          "summary": "ICSA-18-221-01 Crestron TSW-X60 and MC3"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c 2.001.0037.001",
                "product": {
                  "name": "TSW-X60: all versions prior to 2.001.0037.001;",
                  "product_id": "CSAFPID-0001"
                }
              }
            ],
            "category": "product_name",
            "name": "TSW-X60"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c 1.502.0047.001",
                "product": {
                  "name": "MC3: all versions prior to 1.502.0047.001",
                  "product_id": "CSAFPID-0002"
                }
              }
            ],
            "category": "product_name",
            "name": "MC3"
          }
        ],
        "category": "vendor",
        "name": "Crestron"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-11228",
      "cwe": {
        "id": "CWE-78",
        "name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
      },
      "notes": [
        {
          "category": "summary",
          "text": "This vulnerability may allow unauthenticated remote code execution via a Bash shell service in Crestron Toolbox Protocol (CTP). This vulnerability only affects TSW-X60 devices.CVE-2018-11228 has been assigned to this vulnerability. A CVSS v3 base score of 9.8 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).",
          "title": "Vulnerability Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "web.nvd.nist.gov",
          "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-11228"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "mitigation",
          "details": "TSW-X60 (login required) - https://www.crestron.com/en-US/Software-Firmware/Firmware/Touchpanels/TSW-560-TSW-760-TSW-1060/2-001-0040-01",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ],
          "url": "https://www.crestron.com/en-US/Software-Firmware/Firmware/Touchpanels/TSW-560-TSW-760-TSW-1060/2-001-0040-01"
        },
        {
          "category": "vendor_fix",
          "details": "MC3 (login required) - https://www.crestron.com/en-US/Software-Firmware/Firmware/3-Series-Processors/MC3/1-502-0047-001",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ],
          "url": "https://www.crestron.com/en-US/Software-Firmware/Firmware/Touchpanels/TSW-560-TSW-760-TSW-1060/2-001-0040-01"
        },
        {
          "category": "mitigation",
          "details": "Crestron also recommends users refer to Crestron\u0027s Online Help for more information about these and other vulnerabilities (Article #5471). Information for hardening devices is available in Article #5571.",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ]
        }
      ]
    },
    {
      "cve": "CVE-2018-11229",
      "cwe": {
        "id": "CWE-78",
        "name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
      },
      "notes": [
        {
          "category": "summary",
          "text": "The vulnerability may allow unauthenticated remote code execution via command injection in Crestron Toolbox Protocol (CTP). This vulnerability only affects TSW-X60 devices.CVE-2018-11229 has been assigned to this vulnerability. A CVSS v3 base score of 9.8 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).",
          "title": "Vulnerability Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "web.nvd.nist.gov",
          "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-11229"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "mitigation",
          "details": "TSW-X60 (login required) - https://www.crestron.com/en-US/Software-Firmware/Firmware/Touchpanels/TSW-560-TSW-760-TSW-1060/2-001-0040-01",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ],
          "url": "https://www.crestron.com/en-US/Software-Firmware/Firmware/Touchpanels/TSW-560-TSW-760-TSW-1060/2-001-0040-01"
        },
        {
          "category": "vendor_fix",
          "details": "MC3 (login required) - https://www.crestron.com/en-US/Software-Firmware/Firmware/3-Series-Processors/MC3/1-502-0047-001",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ],
          "url": "https://www.crestron.com/en-US/Software-Firmware/Firmware/Touchpanels/TSW-560-TSW-760-TSW-1060/2-001-0040-01"
        },
        {
          "category": "mitigation",
          "details": "Crestron also recommends users refer to Crestron\u0027s Online Help for more information about these and other vulnerabilities (Article #5471). Information for hardening devices is available in Article #5571.",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ]
        }
      ]
    },
    {
      "cve": "CVE-2018-10630",
      "cwe": {
        "id": "CWE-284",
        "name": "Improper Access Control"
      },
      "notes": [
        {
          "category": "summary",
          "text": "The devices are shipped with authentication disabled, and there is no indication to users that they need to take steps to enable it. When compromised, the access to the CTP console is left open.CVE-2018-10630 has been assigned to this vulnerability. A CVSS v3 base score of 9.8 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).",
          "title": "Vulnerability Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "nvd.nist.gov",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-10630"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "mitigation",
          "details": "TSW-X60 (login required) - https://www.crestron.com/en-US/Software-Firmware/Firmware/Touchpanels/TSW-560-TSW-760-TSW-1060/2-001-0040-01",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ],
          "url": "https://www.crestron.com/en-US/Software-Firmware/Firmware/Touchpanels/TSW-560-TSW-760-TSW-1060/2-001-0040-01"
        },
        {
          "category": "vendor_fix",
          "details": "MC3 (login required) - https://www.crestron.com/en-US/Software-Firmware/Firmware/3-Series-Processors/MC3/1-502-0047-001",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ],
          "url": "https://www.crestron.com/en-US/Software-Firmware/Firmware/Touchpanels/TSW-560-TSW-760-TSW-1060/2-001-0040-01"
        },
        {
          "category": "mitigation",
          "details": "Crestron also recommends users refer to Crestron\u0027s Online Help for more information about these and other vulnerabilities (Article #5471). Information for hardening devices is available in Article #5571.",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ]
        }
      ]
    },
    {
      "cve": "CVE-2018-13341",
      "cwe": {
        "id": "CWE-522",
        "name": "Insufficiently Protected Credentials"
      },
      "notes": [
        {
          "category": "summary",
          "text": "The passwords for special sudo accounts may be calculated using information accessible to those with regular user privileges. Attackers could decipher these passwords, which may allow them to execute hidden API calls and escape the CTP console sandbox environment with elevated privileges.CVE-2018-13341 has been assigned to this vulnerability. A CVSS v3 base score of 8.8 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).",
          "title": "Vulnerability Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "web.nvd.nist.gov",
          "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-13341"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "mitigation",
          "details": "TSW-X60 (login required) - https://www.crestron.com/en-US/Software-Firmware/Firmware/Touchpanels/TSW-560-TSW-760-TSW-1060/2-001-0040-01",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ],
          "url": "https://www.crestron.com/en-US/Software-Firmware/Firmware/Touchpanels/TSW-560-TSW-760-TSW-1060/2-001-0040-01"
        },
        {
          "category": "vendor_fix",
          "details": "MC3 (login required) - https://www.crestron.com/en-US/Software-Firmware/Firmware/3-Series-Processors/MC3/1-502-0047-001",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ],
          "url": "https://www.crestron.com/en-US/Software-Firmware/Firmware/Touchpanels/TSW-560-TSW-760-TSW-1060/2-001-0040-01"
        },
        {
          "category": "mitigation",
          "details": "Crestron also recommends users refer to Crestron\u0027s Online Help for more information about these and other vulnerabilities (Article #5471). Information for hardening devices is available in Article #5571.",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ]
        }
      ]
    }
  ]
}

VAR-201806-1058

Vulnerability from variot - Updated: 2024-07-23 22:28

Crestron TSW-1060, TSW-760, TSW-560, TSW-1060-NC, TSW-760-NC, and TSW-560-NC devices before 2.001.0037.001 allow unauthenticated remote code execution via a Bash shell service in Crestron Toolbox Protocol (CTP). This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Crestron's Android-based products. Authentication is required to exploit this vulnerability.The specific flaw exists within the ADDUSER command of the CTP console. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker could leverage this vulnerability to execute code with root privileges. CrestronTSW-1060 and other are touch screen devices of Crestron Electronics of the United States. There are security vulnerabilities in several Crestron products

Show details on source website

JSON

To clipboard

{
  "affected_products": {
    "_id": null,
    "data": [
      {
        "_id": null,
        "model": "tsw-760",
        "scope": null,
        "trust": 11.2,
        "vendor": "crestron",
        "version": null
      },
      {
        "_id": null,
        "model": "toolbox protocol",
        "scope": "lt",
        "trust": 1.0,
        "vendor": "crestron",
        "version": "2.001.0037.001"
      },
      {
        "_id": null,
        "model": "tsw-1060",
        "scope": "lt",
        "trust": 0.6,
        "vendor": "crestron",
        "version": "2.001.0037.001"
      },
      {
        "_id": null,
        "model": "tsw-760",
        "scope": "lt",
        "trust": 0.6,
        "vendor": "crestron",
        "version": "2.001.0037.001"
      },
      {
        "_id": null,
        "model": "tsw-560",
        "scope": "lt",
        "trust": 0.6,
        "vendor": "crestron",
        "version": "2.001.0037.001"
      },
      {
        "_id": null,
        "model": "tsw-1060-nc",
        "scope": "lt",
        "trust": 0.6,
        "vendor": "crestron",
        "version": "2.001.0037.001"
      },
      {
        "_id": null,
        "model": "tsw-760-nc",
        "scope": "lt",
        "trust": 0.6,
        "vendor": "crestron",
        "version": "2.001.0037.001"
      },
      {
        "_id": null,
        "model": "tsw-560-nc",
        "scope": "lt",
        "trust": 0.6,
        "vendor": "crestron",
        "version": "2.001.0037.001"
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-18-935"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-926"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-1080"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-931"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-924"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-938"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-916"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-929"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-927"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-928"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-925"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-922"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-937"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-917"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-919"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-915"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2018-12159"
      },
      {
        "db": "NVD",
        "id": "CVE-2018-11228"
      }
    ]
  },
  "configurations": {
    "_id": null,
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:crestron:crestron_toolbox_protocol_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "2.001.0037.001",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:crestron:tsw-760:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:crestron:dmc-str:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:crestron:tsw-560:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:crestron:tsw-1060-nc:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:crestron:tsw-760-nc:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:crestron:tsw-560-nc:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:crestron:tsw-1060:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2018-11228"
      }
    ]
  },
  "credits": {
    "_id": null,
    "data": "Ricky \"HeadlessZeke\" Lawshae",
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-18-935"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-926"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-1080"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-931"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-924"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-938"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-916"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-929"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-927"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-928"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-925"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-922"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-937"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-917"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-919"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-915"
      }
    ],
    "trust": 11.2
  },
  "cve": "CVE-2018-11228",
  "cvss": {
    "_id": null,
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": null,
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "ZDI",
            "availabilityImpact": "COMPLETE",
            "baseScore": 9.3,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 8.6,
            "id": "CVE-2018-11228",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "HIGH",
            "trust": 9.8,
            "userInteractionRequired": null,
            "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "SINGLE",
            "author": "ZDI",
            "availabilityImpact": "COMPLETE",
            "baseScore": 8.5,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 6.8,
            "id": "CVE-2018-11228",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "HIGH",
            "trust": 1.4,
            "userInteractionRequired": null,
            "vectorString": "AV:N/AC:M/Au:S/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "acInsufInfo": false,
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "obtainAllPrivilege": false,
            "obtainOtherPrivilege": false,
            "obtainUserPrivilege": false,
            "severity": "HIGH",
            "trust": 1.0,
            "userInteractionRequired": false,
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "CNVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "id": "CNVD-2018-12159",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 0.6,
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          }
        ],
        "cvssV3": [
          {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "author": "NVD",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "exploitabilityScore": 3.9,
            "impactScore": 5.9,
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "trust": 1.0,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          }
        ],
        "severity": [
          {
            "author": "ZDI",
            "id": "CVE-2018-11228",
            "trust": 11.2,
            "value": "HIGH"
          },
          {
            "author": "NVD",
            "id": "CVE-2018-11228",
            "trust": 1.0,
            "value": "CRITICAL"
          },
          {
            "author": "CNVD",
            "id": "CNVD-2018-12159",
            "trust": 0.6,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-18-935"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-926"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-1080"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-931"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-924"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-938"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-916"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-929"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-927"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-928"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-925"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-922"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-937"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-917"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-919"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-915"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2018-12159"
      },
      {
        "db": "NVD",
        "id": "CVE-2018-11228"
      }
    ]
  },
  "description": {
    "_id": null,
    "data": "Crestron TSW-1060, TSW-760, TSW-560, TSW-1060-NC, TSW-760-NC, and TSW-560-NC devices before 2.001.0037.001 allow unauthenticated remote code execution via a Bash shell service in Crestron Toolbox Protocol (CTP). This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Crestron\u0027s Android-based products. Authentication is required to exploit this vulnerability.The specific flaw exists within the ADDUSER command of the CTP console. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker could leverage this vulnerability to execute code with root privileges. CrestronTSW-1060 and other are touch screen devices of Crestron Electronics of the United States. There are security vulnerabilities in several Crestron products",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2018-11228"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-926"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-915"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-919"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-917"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-937"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-922"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-925"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-935"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-927"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-929"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-916"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-938"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-924"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-931"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-1080"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-928"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2018-12159"
      }
    ],
    "trust": 11.52
  },
  "external_ids": {
    "_id": null,
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2018-11228",
        "trust": 12.8
      },
      {
        "db": "ICS CERT",
        "id": "ICSA-18-221-01",
        "trust": 1.0
      },
      {
        "db": "BID",
        "id": "105051",
        "trust": 1.0
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-6176",
        "trust": 0.7
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-935",
        "trust": 0.7
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-6167",
        "trust": 0.7
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-926",
        "trust": 0.7
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-6274",
        "trust": 0.7
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-1080",
        "trust": 0.7
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-6172",
        "trust": 0.7
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-931",
        "trust": 0.7
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-6165",
        "trust": 0.7
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-924",
        "trust": 0.7
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-6189",
        "trust": 0.7
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-938",
        "trust": 0.7
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-6156",
        "trust": 0.7
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-916",
        "trust": 0.7
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-6170",
        "trust": 0.7
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-929",
        "trust": 0.7
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-6168",
        "trust": 0.7
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-927",
        "trust": 0.7
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-6169",
        "trust": 0.7
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-928",
        "trust": 0.7
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-6166",
        "trust": 0.7
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-925",
        "trust": 0.7
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-6163",
        "trust": 0.7
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-922",
        "trust": 0.7
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-6178",
        "trust": 0.7
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-937",
        "trust": 0.7
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-6157",
        "trust": 0.7
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-917",
        "trust": 0.7
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-6159",
        "trust": 0.7
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-919",
        "trust": 0.7
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-6155",
        "trust": 0.7
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-915",
        "trust": 0.7
      },
      {
        "db": "CNVD",
        "id": "CNVD-2018-12159",
        "trust": 0.6
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-18-935"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-926"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-1080"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-931"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-924"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-938"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-916"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-929"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-927"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-928"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-925"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-922"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-937"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-917"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-919"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-915"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2018-12159"
      },
      {
        "db": "NVD",
        "id": "CVE-2018-11228"
      }
    ]
  },
  "id": "VAR-201806-1058",
  "iot": {
    "_id": null,
    "data": true,
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2018-12159"
      }
    ],
    "trust": 1.2973039216666666
  },
  "iot_taxonomy": {
    "_id": null,
    "data": [
      {
        "category": [
          "Network device"
        ],
        "sub_category": null,
        "trust": 0.6
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2018-12159"
      }
    ]
  },
  "last_update_date": "2024-07-23T22:28:27.641000Z",
  "patch": {
    "_id": null,
    "data": [
      {
        "title": "Crestron has issued an update to correct this vulnerability.",
        "trust": 11.2,
        "url": "https://ics-cert.us-cert.gov/advisories/icsa-18-221-01"
      },
      {
        "title": "Patches for multiple Crestron product code execution vulnerabilities",
        "trust": 0.6,
        "url": "https://www.cnvd.org.cn/patchinfo/show/132893"
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-18-935"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-926"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-1080"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-931"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-924"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-938"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-916"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-929"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-927"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-928"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-925"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-922"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-937"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-917"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-919"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-915"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2018-12159"
      }
    ]
  },
  "problemtype_data": {
    "_id": null,
    "data": [
      {
        "problemtype": "CWE-94",
        "trust": 1.0
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2018-11228"
      }
    ]
  },
  "references": {
    "_id": null,
    "data": [
      {
        "trust": 12.2,
        "url": "https://ics-cert.us-cert.gov/advisories/icsa-18-221-01"
      },
      {
        "trust": 1.0,
        "url": "http://www.securityfocus.com/bid/105051"
      },
      {
        "trust": 1.0,
        "url": "https://support.crestron.com/app/answers/answer_view/a_id/5471/~/the-latest-details-from-crestron-on-security-and-safety-on-the-internet"
      },
      {
        "trust": 0.6,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2018-11228"
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-18-935"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-926"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-1080"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-931"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-924"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-938"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-916"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-929"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-927"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-928"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-925"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-922"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-937"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-917"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-919"
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-915"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2018-12159"
      },
      {
        "db": "NVD",
        "id": "CVE-2018-11228"
      }
    ]
  },
  "sources": {
    "_id": null,
    "data": [
      {
        "db": "ZDI",
        "id": "ZDI-18-935",
        "ident": null
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-926",
        "ident": null
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-1080",
        "ident": null
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-931",
        "ident": null
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-924",
        "ident": null
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-938",
        "ident": null
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-916",
        "ident": null
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-929",
        "ident": null
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-927",
        "ident": null
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-928",
        "ident": null
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-925",
        "ident": null
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-922",
        "ident": null
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-937",
        "ident": null
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-917",
        "ident": null
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-919",
        "ident": null
      },
      {
        "db": "ZDI",
        "id": "ZDI-18-915",
        "ident": null
      },
      {
        "db": "CNVD",
        "id": "CNVD-2018-12159",
        "ident": null
      },
      {
        "db": "NVD",
        "id": "CVE-2018-11228",
        "ident": null
      }
    ]
  },
  "sources_release_date": {
    "_id": null,
    "data": [
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-935",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-926",
        "ident": null
      },
      {
        "date": "2018-09-24T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-1080",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-931",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-924",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-938",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-916",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-929",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-927",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-928",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-925",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-922",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-937",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-917",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-919",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-915",
        "ident": null
      },
      {
        "date": "2018-06-27T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2018-12159",
        "ident": null
      },
      {
        "date": "2018-06-08T01:29:00.950000",
        "db": "NVD",
        "id": "CVE-2018-11228",
        "ident": null
      }
    ]
  },
  "sources_update_date": {
    "_id": null,
    "data": [
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-935",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-926",
        "ident": null
      },
      {
        "date": "2018-09-24T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-1080",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-931",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-924",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-938",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-916",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-929",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-927",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-928",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-925",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-922",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-937",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-917",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-919",
        "ident": null
      },
      {
        "date": "2018-08-14T00:00:00",
        "db": "ZDI",
        "id": "ZDI-18-915",
        "ident": null
      },
      {
        "date": "2018-06-27T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2018-12159",
        "ident": null
      },
      {
        "date": "2019-05-02T14:48:44.913000",
        "db": "NVD",
        "id": "CVE-2018-11228",
        "ident": null
      }
    ]
  },
  "title": {
    "_id": null,
    "data": "Crestron Multiple Products CTP Console UPDATEPASSWORD Command Injection Remote Code Execution Vulnerability",
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-18-935"
      }
    ],
    "trust": 0.7
  }
}

FKIE_CVE-2018-11228

Vulnerability from fkie_nvd - Published: 2018-06-08 01:29 - Updated: 2024-11-21 03:42

Severity ?

9.8 (Critical) - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

References

URL	Tags
cve@mitre.org	http://www.securityfocus.com/bid/105051	Third Party Advisory, VDB Entry
cve@mitre.org	https://ics-cert.us-cert.gov/advisories/ICSA-18-221-01	Third Party Advisory, US Government Resource
cve@mitre.org	https://support.crestron.com/app/answers/answer_view/a_id/5471/~/the-latest-details-from-crestron-on-security-and-safety-on-the-internet	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/105051	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	https://ics-cert.us-cert.gov/advisories/ICSA-18-221-01	Third Party Advisory, US Government Resource
af854a3a-2127-422b-91ae-364da2661108	https://support.crestron.com/app/answers/answer_view/a_id/5471/~/the-latest-details-from-crestron-on-security-and-safety-on-the-internet	Vendor Advisory

Impacted products

Vendor	Product	Version
crestron	crestron_toolbox_protocol_firmware	*
crestron	dmc-str	-
crestron	tsw-1060	-
crestron	tsw-1060-nc	-
crestron	tsw-560	-
crestron	tsw-560-nc	-
crestron	tsw-760	-
crestron	tsw-760-nc	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:crestron:crestron_toolbox_protocol_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "990FAF8F-A8B1-46B9-9C75-0ECF3A636B20",
              "versionEndExcluding": "2.001.0037.001",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:crestron:dmc-str:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "88961DC9-941C-480F-90EB-C572D0C0DD79",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:crestron:tsw-1060:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "199FB4DB-871C-422D-9082-C0C7F1E241CF",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:crestron:tsw-1060-nc:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BB8F6CD2-49B9-489E-9413-881D3D0DE791",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:crestron:tsw-560:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "B107D415-5148-4323-A71E-AD694BE2CE16",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:crestron:tsw-560-nc:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E44817F9-2CC7-4794-A0C0-8A9718AFA136",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:crestron:tsw-760:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BCDAF5B8-C9B3-49F9-A558-EFC89C918806",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:crestron:tsw-760-nc:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AD7F2F4A-7697-445A-A1B0-A66BA5DEC70A",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Crestron TSW-1060, TSW-760, TSW-560, TSW-1060-NC, TSW-760-NC, and TSW-560-NC devices before 2.001.0037.001 allow unauthenticated remote code execution via a Bash shell service in Crestron Toolbox Protocol (CTP)."
    },
    {
      "lang": "es",
      "value": "Los dispositivos Crestron TSW-1060, TSW-760, TSW-560, TSW-1060-NC, TSW-760-NC y TSW-560-NC en versiones anteriores a la 2.001.0037.001 permiten la ejecuci\u00f3n remota de c\u00f3digo sin autenticar mediante un servicio shell Bash en CTP (Crestron Toolbox Protocol)."
    }
  ],
  "id": "CVE-2018-11228",
  "lastModified": "2024-11-21T03:42:56.903",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 10.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 9.8,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2018-06-08T01:29:00.950",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/105051"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-221-01"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://support.crestron.com/app/answers/answer_view/a_id/5471/~/the-latest-details-from-crestron-on-security-and-safety-on-the-internet"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/105051"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-221-01"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://support.crestron.com/app/answers/answer_view/a_id/5471/~/the-latest-details-from-crestron-on-security-and-safety-on-the-internet"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-94"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CNVD-2018-12159

Vulnerability from cnvd - Published: 2018-06-27

Title

多款Crestron产品代码执行漏洞

Description

Crestron TSW-1060等都是美国Crestron Electronics公司的触摸屏设备。多款Crestron产品中存在安全漏洞。远程攻击者可借助Crestron Toolbox Protocol (CTP)中的Bash shell服务利用该漏洞执行代码。

Severity

高

Patch Name

多款Crestron产品代码执行漏洞的补丁

Patch Description

Crestron TSW-1060等都是美国Crestron Electronics公司的触摸屏设备。多款Crestron产品中存在安全漏洞。远程攻击者可借助Crestron Toolbox Protocol (CTP)中的Bash shell服务利用该漏洞执行代码。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://support.crestron.com/app/answers/answer_view/a_id/5471/~/the-latest-details-from-crestron-on-security-and-safety-on-the-internet

Reference

https://nvd.nist.gov/vuln/detail/CVE-2018-11228

Impacted products

Name
['Crestron TSW-1060 <2.001.0037.001', 'Crestron TSW-760 <2.001.0037.001', 'Crestron TSW-560 <2.001.0037.001', 'Crestron TSW-1060-NC <2.001.0037.001', 'Crestron TSW-760-NC <2.001.0037.001', 'Crestron TSW-560-NC <2.001.0037.001']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-11228"
    }
  },
  "description": "Crestron TSW-1060\u7b49\u90fd\u662f\u7f8e\u56fdCrestron Electronics\u516c\u53f8\u7684\u89e6\u6478\u5c4f\u8bbe\u5907\u3002\r\n\r\n\u591a\u6b3eCrestron\u4ea7\u54c1\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u501f\u52a9Crestron Toolbox Protocol (CTP)\u4e2d\u7684Bash shell\u670d\u52a1\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u4ee3\u7801\u3002",
  "discovererName": "unknown",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://support.crestron.com/app/answers/answer_view/a_id/5471/~/the-latest-details-from-crestron-on-security-and-safety-on-the-internet",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-12159",
  "openTime": "2018-06-27",
  "patchDescription": "Crestron TSW-1060\u7b49\u90fd\u662f\u7f8e\u56fdCrestron Electronics\u516c\u53f8\u7684\u89e6\u6478\u5c4f\u8bbe\u5907\u3002\r\n\r\n\u591a\u6b3eCrestron\u4ea7\u54c1\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u501f\u52a9Crestron Toolbox Protocol (CTP)\u4e2d\u7684Bash shell\u670d\u52a1\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u4ee3\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "\u591a\u6b3eCrestron\u4ea7\u54c1\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Crestron TSW-1060 \u003c2.001.0037.001",
      "Crestron TSW-760 \u003c2.001.0037.001",
      "Crestron TSW-560 \u003c2.001.0037.001",
      "Crestron TSW-1060-NC \u003c2.001.0037.001",
      "Crestron TSW-760-NC \u003c2.001.0037.001",
      "Crestron TSW-560-NC \u003c2.001.0037.001"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2018-11228",
  "serverity": "\u9ad8",
  "submitTime": "2018-06-12",
  "title": "\u591a\u6b3eCrestron\u4ea7\u54c1\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e"
}

GSD-2018-11228

Vulnerability from gsd - Updated: 2023-12-13 01:22

Details

Aliases

CVE-2018-11228

Aliases

CVE-2018-11228

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2018-11228",
    "description": "Crestron TSW-1060, TSW-760, TSW-560, TSW-1060-NC, TSW-760-NC, and TSW-560-NC devices before 2.001.0037.001 allow unauthenticated remote code execution via a Bash shell service in Crestron Toolbox Protocol (CTP).",
    "id": "GSD-2018-11228"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2018-11228"
      ],
      "details": "Crestron TSW-1060, TSW-760, TSW-560, TSW-1060-NC, TSW-760-NC, and TSW-560-NC devices before 2.001.0037.001 allow unauthenticated remote code execution via a Bash shell service in Crestron Toolbox Protocol (CTP).",
      "id": "GSD-2018-11228",
      "modified": "2023-12-13T01:22:42.538366Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2018-11228",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Crestron TSW-1060, TSW-760, TSW-560, TSW-1060-NC, TSW-760-NC, and TSW-560-NC devices before 2.001.0037.001 allow unauthenticated remote code execution via a Bash shell service in Crestron Toolbox Protocol (CTP)."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "105051",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/105051"
          },
          {
            "name": "https://ics-cert.us-cert.gov/advisories/ICSA-18-221-01",
            "refsource": "MISC",
            "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-221-01"
          },
          {
            "name": "https://support.crestron.com/app/answers/answer_view/a_id/5471/~/the-latest-details-from-crestron-on-security-and-safety-on-the-internet",
            "refsource": "CONFIRM",
            "url": "https://support.crestron.com/app/answers/answer_view/a_id/5471/~/the-latest-details-from-crestron-on-security-and-safety-on-the-internet"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:crestron:crestron_toolbox_protocol_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "2.001.0037.001",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:crestron:tsw-760:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:crestron:dmc-str:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:crestron:tsw-560:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:crestron:tsw-1060-nc:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:crestron:tsw-760-nc:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:crestron:tsw-560-nc:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:crestron:tsw-1060:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2018-11228"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Crestron TSW-1060, TSW-760, TSW-560, TSW-1060-NC, TSW-760-NC, and TSW-560-NC devices before 2.001.0037.001 allow unauthenticated remote code execution via a Bash shell service in Crestron Toolbox Protocol (CTP)."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-94"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.crestron.com/app/answers/answer_view/a_id/5471/~/the-latest-details-from-crestron-on-security-and-safety-on-the-internet",
              "refsource": "CONFIRM",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "https://support.crestron.com/app/answers/answer_view/a_id/5471/~/the-latest-details-from-crestron-on-security-and-safety-on-the-internet"
            },
            {
              "name": "https://ics-cert.us-cert.gov/advisories/ICSA-18-221-01",
              "refsource": "MISC",
              "tags": [
                "Third Party Advisory",
                "US Government Resource"
              ],
              "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-221-01"
            },
            {
              "name": "105051",
              "refsource": "BID",
              "tags": [
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "http://www.securityfocus.com/bid/105051"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 10.0,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 5.9
        }
      },
      "lastModifiedDate": "2019-05-02T14:48Z",
      "publishedDate": "2018-06-08T01:29Z"
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2018-11228 (GCVE-0-2018-11228)

GHSA-W4CC-FHFH-RGG3

ICSA-18-221-01

VAR-201806-1058

FKIE_CVE-2018-11228

CNVD-2018-12159

GSD-2018-11228

Tags

Sightings

Nomenclature