CVE-2020-36910: Cayin Signage Media Player 3.0 Authenticated Remote Command Injection via NTP Parameter

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-36910

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Cayin Signage Media Player 3.0 Authenticated Remote Command Injection via NTP Parameter

Source: NVD (National Vulnerability Database)

Vulnerability Description

Cayin Signage Media Player 3.0 contains an authenticated remote command injection vulnerability in system.cgi and wizard_system.cgi pages. Attackers can exploit the 'NTP_Server_IP' parameter with default credentials to execute arbitrary shell commands as root.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

OS命令中使用的特殊元素转义处理不恰当(OS命令注入)

Source: NVD (National Vulnerability Database)

Vulnerability Title

Cayin Signage Media Player 操作系统命令注入漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Cayin Signage Media Player是中国台湾凯音（Cayin）公司的一系列电子看板播放终端。 Cayin Signage Media Player 3.0版本存在操作系统命令注入漏洞，该漏洞源于system.cgi和wizard_system.cgi页面存在经过身份验证的远程命令注入漏洞，可能导致以root权限执行任意shell命令。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE
CAYIN Technology	SMP-8000QD	3.0	-
CAYIN Technology	SMP-8000	3.0	-
CAYIN Technology	SMP-6000	3.0 Build 19025	-
CAYIN Technology	SMP-4000	1.0 Build 14098	-
CAYIN Technology	SMP-2310	3.0	-
CAYIN Technology	SMP-2300	3.0 Build 19316	-
CAYIN Technology	SMP-2210	3.0 Build 19025	-
CAYIN Technology	SMP-2200	3.0 Build 19029	-
CAYIN Technology	SMP-2100	10.0 Build 16228	-
CAYIN Technology	SMP-2000	1.0 Build 14167	-
CAYIN Technology	SMP-1000	1.0 Build 14099	-
CAYIN Technology	SMP-PROPLUS	1.5 Build 10081	-
CAYIN Technology	SMP-WEBPLUS	6.5 Build 11126	-
CAYIN Technology	SMP-WEB4	2.0 Build 13073	-
CAYIN Technology	SMP-300	1.0 Build 14177	-
CAYIN Technology	SMP-200	1.0 Build 13080	-
CAYIN Technology	SMP-PRO4	1.0	-
CAYIN Technology	SMP-NEO2	1.0	-
CAYIN Technology	SMP-NEO	1.0	-

II. Public POCs for CVE-2020-36910

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-36910

Please Login to view more intelligence information

https://www.exploit-db.com/exploits/48557exploit
https://cxsecurity.com/issue/WLB-2020060049exploit
https://www.cayintech.comproduct
https://exchange.xforce.ibmcloud.com/vulnerabilities/182924vdb-entry
https://packetstorm.news/files/id/157942exploit
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2020-5569.phpthird-party-advisory
https://www.vulncheck.com/advisories/cayin-signage-media-player-authenticated-remote-command-injection-via-ntp-parameterthird-party-advisory
https://nvd.nist.gov/vuln/detail/CVE-2020-36910

IV. Related Vulnerabilities

Same vendor: CAYIN Technology

Same weakness: CWE-78

V. Comments for CVE-2020-36910

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2020-36910

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-36910

III. Intelligence Information for CVE-2020-36910

IV. Related Vulnerabilities

V. Comments for CVE-2020-36910

Leave a comment