CVE-2018-14494: OS Command Injection
First published: Wed Jul 10 2019(Updated: )
** DISPUTED ** Vivotek FD8136 devices allow Remote Command Injection, related to BusyBox and wget. NOTE: the vendor sent a clarification on 2019-09-17 explaining that, although this CVE was first populated in July 2019, it is a historical vulnerability that does not apply to any current or recent Vivotek hardware or firmware.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Vivotek Fd8136 Firmware | =0301a | |
| Vivotek FD8136 | ||
| All of | ||
| Vivotek Fd8136 Firmware | =0301a | |
| Vivotek FD8136 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2018-14494.
What is the severity of CVE-2018-14494?
The severity of CVE-2018-14494 is critical, with a severity value of 9.8.
What is the affected software?
The affected software is Vivotek FD8136 devices with firmware version 0301a.
What is the risk associated with this vulnerability?
This vulnerability allows remote command injection, which can lead to unauthorized access and control of the affected devices.
Are there any fixes available for this vulnerability?
No fixes are available as the vendor has clarified that this CVE is a historical vulnerability that does not apply to any current or recent Vivotek FD8136 devices.
- collector/nvd-index
- agent/weakness
- agent/type
- agent/references
- agent/first-publish-date
- agent/severity
- agent/author
- agent/status
- agent/description
- agent/event
- agent/tags
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- status/disputed
- vendor/vivotek
- canonical/vivotek fd8136 firmware
- version/vivotek fd8136 firmware/0301a
- canonical/vivotek fd8136