Marco Prati

**Name of the Vulnerable Software and Affected Versions** Zumtobel Netlink CCD Onboard versions 3.74 through 3.79 **Description** The issue concerns hardcoded credentials for the Administrator account. **Recommendations** For Zumtobel Netlink CCD Onboard versions 3.74 through 3.79, update to Firmware 3.80 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Zumtobel Netlink CCD Onboard versions 3.74 through 3.79 **Description** A command injection issue was discovered via the `NetHostname` parameter. This allows for potential exploitation. **Recommendations** For Zumtobel Netlink CCD Onboard versions 3.74 through 3.79, update to Firmware 3.80 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Zumtobel Netlink CCD Onboard version 3.74 **Description** A buffer overflow issue was discovered in the NetlinkWeb::Information::SetDeviceIdentification component. This issue affects the specified version of the Zumtobel Netlink CCD Onboard firmware. **Recommendations** For version 3.74, consider disabling the `NetlinkWeb::Information::SetDeviceIdentification` component until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.