CNNVD-202509-336 Information

CNNVD ID

CNNVD-202509-336

Related CVE

CVE-2025-47421

• CNNVD Published: 2025-09-03

Description (Chinese)

CRESTRON TOUCHSCREENS x70是美国CRESTRON公司的一款交互触摸显示器。 CRESTRON TOUCHSCREENS x70 3.001.0031.001至3.001.0034.001版本存在安全漏洞，该漏洞源于参数分隔符中和不当，可能导致参数注入攻击。

Description (English)

CRESTRON TOUCHSCREENS x70 is an interactive touch monitor of CRESTRON in the United States. CRESTRON TOUBCHSCREENS x 70 3.001.01.001 to 3.001.004.001 contains a security loophole, which stems from the inaccuracy of the parameter separator and may result in the parameter being injected into the attack.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Crestron

Published

2025-09-03

Last Modified

2026-02-24

References

https://www.crestron.com/Software-Firmware/Firmware/Touchpanels/TS-770-TS-1070-TSS-770-TSS-1070-TSW-570/3-002-0040-001 https://www.crestron.com/release_notes/tsw-xx70_3.002.0040.001_release_notes.pdf https://security.crestron.com

Patch

https://www.crestron.com/