Computrols Building Automation Software 19.0.0 Remote Code Execution Vulnerability
Computrols CBAS 18.0.0 has hard-coded encryption keys. Computrols is prone to a remote code-execution vulnerability.
The information has been provided by Computrols
The original article can be found at: https://applied-risk.com/labs/advisories
This allows a remote attacker to exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts may result in a denial-of-service condition.
- Computrols Building Automation Software 19.0.0