CVE-2022-34102
First published: Tue Sep 13 2022(Updated: )
Insufficient access control vulnerability was discovered in the Crestron AirMedia Windows Application, version 4.3.1.39, in which a user can pause the uninstallation of an executable to gain a SYSTEM level command prompt.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| =4.3.1.39 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Crestron AirMedia Windows Application vulnerability?
The vulnerability ID is CVE-2022-34102.
What is the severity of CVE-2022-34102?
The severity of CVE-2022-34102 is high with a severity value of 8.8.
How does CVE-2022-34102 affect the Crestron AirMedia Windows Application?
CVE-2022-34102 is an insufficient access control vulnerability that allows a user to pause the uninstallation of an executable to gain a SYSTEM level command prompt in the Crestron AirMedia Windows Application version 4.3.1.39.
Which version of the Crestron AirMedia Windows Application is affected by CVE-2022-34102?
CVE-2022-34102 affects the Crestron AirMedia Windows Application version 4.3.1.39.
How can I fix the CVE-2022-34102 vulnerability in the Crestron AirMedia Windows Application?
To fix the CVE-2022-34102 vulnerability, it is recommended to update the Crestron AirMedia Windows Application to version 5.5.1.84 or a later version, as advised by Crestron security advisories and release notes.
- collector/nvd-index
- agent/references
- agent/severity
- agent/author
- agent/type
- agent/description
- agent/event
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/crestron