Crestron · Crestron Console · CVE-2018-5553
**Name of the Vulnerable Software and Affected Versions**
Crestron Console service versions 1.3384.00049.001 and lower
**Description**
The issue concerns command injection that can be used to gain root-level access. This affects devices with default configuration, specifically DGE-100, DM-DGE-200-C, and TS-1542-C devices.
**Recommendations**
For versions 1.3384.00049.001 and lower, update the firmware to a version higher than 1.3384.00049.001 to resolve the issue.