Command Injection Vulnerability in Crestron and Barco Products
CVE-2019-3929

9.8CRITICAL

Key Information:

Vendor

Crestron

Status
Crestron Airmedia, Barco Wepresent, Extron Sharelink, Teq Av It Wips710, Sharp Pn-l703wa, Optoma WPs-pro, Blackbox Hd WPs, Infocus Liteshow3, And Infocus Liteshow4.
Vendor
CVE Published:
30 April 2019

Badges

πŸ‘Ύ Exploit Exists🟑 Public PoC🟣 EPSS 94%πŸ¦… CISA Reported

What is CVE-2019-3929?

Certain firmware versions from Crestron, Barco, Extron, Teq AV IT, SHARP, Optoma, Blackbox, and InFocus are susceptible to a command injection vulnerability via the file_transfer.cgi HTTP endpoint. This can allow unauthenticated attackers to execute arbitrary operating system commands with root privileges, posing significant risks to the security and integrity of the affected devices.

CISA has reported CVE-2019-3929

CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed CVE-2019-3929 as being exploited but is not known by the CISA to be used in ransomware campaigns. This is subject to change at pace

The CISA's recommendation is: Apply updates per vendor instructions.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Crestron AirMedia, Barco WePresent, Extron ShareLink, Teq AV IT WIPS710, SHARP PN-L703WA, Optoma WPS-Pro, Blackbox HD WPS, InFocus LiteShow3, and InFocus LiteShow4. Crestron AM-100 firmware 1.6.0.2

Crestron AirMedia, Barco WePresent, Extron ShareLink, Teq AV IT WIPS710, SHARP PN-L703WA, Optoma WPS-Pro, Blackbox HD WPS, InFocus LiteShow3, and InFocus LiteShow4. Crestron AM-101 firmware 2.7.0.1

Crestron AirMedia, Barco WePresent, Extron ShareLink, Teq AV IT WIPS710, SHARP PN-L703WA, Optoma WPS-Pro, Blackbox HD WPS, InFocus LiteShow3, and InFocus LiteShow4. Barco wePresent WiPG-1000P firmware 2.3.0.10

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2019-3929 - Proof of Concept

Metasploit exploit module for CVE-2019-3929
Created by Rapid7

CVE-2019-3929
Created by xfox64x

References

https://www.tenable.com/security/research/tra-2019-20
x_refsource_MISC
https://www.exploit-db.com/exploits/46786/
exploitx_refsource_EXPLOIT-DB
http://packetstormsecurity.com/files/152715/Barco-AWIND-O...
x_refsource_MISC

EPSS Score

94% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • πŸ¦…

    CISA Reported

  • 🟑

    Public PoC available

  • πŸ‘Ύ

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

JSON
.