Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2022-23178 PoC — Crestron Hd-Md4X2-4K-E 授权问题漏洞

Source
https://github.com/Threekiii/Awesome-POC/blob/master/%E7%BD%91%E7%BB%9C%E8%AE%BE%E5%A4%87%E6%BC%8F%E6%B4%9E/Crestron%20aj.html%20%E8%B4%A6%E5%8F%B7%E5%AF%86%E7%A0%81%E6%B3%84%E6%BC%8F%E6%BC%8F%E6%B4%9E%20CVE-2022-23178.md
Associated Vulnerability
Title:Crestron Hd-Md4X2-4K-E 授权问题漏洞 (CVE-2022-23178)
Description:Crestron Hd-Md4X2-4K-E是美国Crestron公司的一个简单的使用,有四个 Hdmi 输入和两个 Hdmi 输出超高清信号切换器。 Crestron HD-MD4X2-4K-E 1.0.0.2159 存在安全漏洞,当未经身份验证的攻击者访问 Crestron HDMI 切换器的管理 Web 界面时,会披露对 Web 界面进行身份验证有效的用户凭据。
File Snapshot

 # Crestron aj.html 账号密码泄漏漏洞 CVE-2022-23178

## 漏洞描述

Crestron HD等系列设备 aj.html页面调用特定的参数可以获取账号密码等敏感信息


...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.