CVE-2017-17738

The BrightSign Digital Signage (4k242) device (Firmware 6.2.63 and below) allows renaming and modifying files via /tools.html.
References
Link Resource
http://www.information-paradox.net/2017/12/brightsign-multiple-vulnerablities-cve.html Issue Tracking Third Party Advisory
https://www.exploit-db.com/exploits/43364/ Exploit Issue Tracking Third Party Advisory VDB Entry
http://www.information-paradox.net/2017/12/brightsign-multiple-vulnerablities-cve.html Issue Tracking Third Party Advisory
https://www.exploit-db.com/exploits/43364/ Exploit Issue Tracking Third Party Advisory VDB Entry
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:brightsign:4k242_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:brightsign:4k242:-:*:*:*:*:*:*:*

History

21 Nov 2024, 03:18

Type Values Removed Values Added
References () http://www.information-paradox.net/2017/12/brightsign-multiple-vulnerablities-cve.html - Issue Tracking, Third Party Advisory () http://www.information-paradox.net/2017/12/brightsign-multiple-vulnerablities-cve.html - Issue Tracking, Third Party Advisory
References () https://www.exploit-db.com/exploits/43364/ - Exploit, Issue Tracking, Third Party Advisory, VDB Entry () https://www.exploit-db.com/exploits/43364/ - Exploit, Issue Tracking, Third Party Advisory, VDB Entry

Information

Published : 2017-12-18 06:29

Updated : 2024-11-21 03:18


NVD link : CVE-2017-17738

Mitre link : CVE-2017-17738

CVE.ORG link : CVE-2017-17738


JSON object : View

Products Affected

brightsign

  • 4k242
  • 4k242_firmware