CVE-2024-26290 Information

Description

Improper Input Validation vulnerability in Avid Avid NEXIS E-series on Linux Avid Avid NEXIS F-series on Linux Avid Avid NEXIS PRO+ on Linux Avid System Director Appliance (SDA+) on Linux allows code execution on underlying operating system with root permissions.This issue affects Avid NEXIS E-series: before 2024.6.0; Avid NEXIS F-series: before 2024.6.0; Avid NEXIS PRO+: before 2024.6.0; System Director Appliance (SDA+): before 2024.6.0.

Reference

https://kb.avid.com/pkb/articles/troubleshooting/en239659 https://www.drive-byte.de/en/blog/avid-nexis-agent-multiple-vulnerabilities