CVE-2020-36915

Sažetak

Adtec Digital SignEdje Digital Signage Player v2.08.28 contains multiple hardcoded default credentials that allow unauthenticated remote access to web, telnet, and SSH interfaces. Attackers can exploit these credentials to gain root-level access and execute system commands across multiple Adtec Digital product versions.

Reference

https://exchange.xforce.ibmcloud.com/vulnerabilities/190628
https://packetstorm.news/files/id/159709
https://www.adtecdigital.com
https://www.exploit-db.com/exploits/48954
https://www.vulncheck.com/advisories/adtec-digital-signedje-digital-signage-player-default-credentials
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2020-5603.php
https://www.exploit-db.com/exploits/48954

CVSS

Base:	7.5
Impact:	3.6
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
HIGH	NONE	NONE

CVSS vektor

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Zadnje važnije ažuriranje

08-01-2026 - 18:09

Objavljeno

06-01-2026 - 16:15