PT-2015-4034 · Infocus · Infocus In3128Hd

Published

2015-05-18

Updated

2015-05-19

CVE-2014-8383

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions InFocus IN3128HD projector version 0.26

Description The issue allows remote attackers to bypass authentication by making a direct request to "main.html".

Recommendations For version 0.26, update the firmware to a version that addresses this issue, if available. As a temporary workaround, consider restricting access to the "main.html" endpoint to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2014-8383

Affected Products

Infocus In3128Hd

PT-2015-4034 · Infocus · Infocus In3128Hd

CVE-2014-8383

Related Identifiers

Affected Products

References · 4