First published: Wed Jul 10 2019(Updated: )
** DISPUTED ** Vivotek FD8136 devices allow Remote Command Injection, related to BusyBox and wget. NOTE: the vendor sent a clarification on 2019-09-17 explaining that, although this CVE was first populated in July 2019, it is a historical vulnerability that does not apply to any current or recent Vivotek hardware or firmware.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Vivotek Fd8136 Firmware | =0301a | |
Vivotek FD8136 | ||
All of | ||
Vivotek Fd8136 Firmware | =0301a | |
Vivotek FD8136 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this issue is CVE-2018-14494.
The severity of CVE-2018-14494 is critical, with a severity value of 9.8.
The affected software is Vivotek FD8136 devices with firmware version 0301a.
This vulnerability allows remote command injection, which can lead to unauthorized access and control of the affected devices.
No fixes are available as the vendor has clarified that this CVE is a historical vulnerability that does not apply to any current or recent Vivotek FD8136 devices.