CVE-2017-16710: XSS
First published: Wed Jul 11 2018(Updated: )
Cross-site scripting (XSS) vulnerability in Crestron Airmedia AM-100 devices with firmware before 1.6.0 and AM-101 devices with firmware before 2.7.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Crestron Airmedia Am-100 Firmware | <1.6.0 | |
| Crestron Airmedia AM-100 | ||
| Crestron Airmedia Am-101 Firmware | <2.7.0 | |
| Crestron Airmedia Am-101 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2017-16710?
The severity of CVE-2017-16710 is medium with a score of 4.8.
How does CVE-2017-16710 affect Crestron Airmedia AM-100 devices?
CVE-2017-16710 affects Crestron Airmedia AM-100 devices with firmware versions before 1.6.0.
How does CVE-2017-16710 affect Crestron Airmedia AM-101 devices?
CVE-2017-16710 affects Crestron Airmedia AM-101 devices with firmware versions before 2.7.0.
What is the Common Vulnerabilities and Exposures (CVE) ID for this vulnerability?
The Common Vulnerabilities and Exposures (CVE) ID for this vulnerability is CVE-2017-16710.
How can I fix CVE-2017-16710?
To fix CVE-2017-16710, update the firmware of Crestron Airmedia AM-100 devices to version 1.6.0 or later, and Crestron Airmedia AM-101 devices to version 2.7.0 or later.
- collector/nvd-index
- agent/severity
- agent/author
- agent/weakness
- agent/references
- agent/tags
- agent/description
- agent/type
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- vendor/crestron
- canonical/crestron airmedia am-100 firmware
- canonical/crestron airmedia am-100
- canonical/crestron airmedia am-101 firmware
- canonical/crestron airmedia am-101