QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2016-5669

Back to search

CVE-2016-5669

Published: Aug 3, 2016

Modified: Aug 6, 2024

PUBLISHED

Description

Crestron Electronics DM-TXRX-100-STR devices with firmware before 1.3039.00040 use a hardcoded 0xb9eed4d955a59eb3 X.509 certificate from an OpenSSL Test Certification Authority, which makes it easier for remote attackers to conduct man-in-the-middle attacks against HTTPS sessions by leveraging the certificate's trust relationship.

VendorProductVersions

n/a

n/a

affected
n/a

References

92211
vdb-entry
x_refsource_BID
VU#974424
third-party-advisory
x_refsource_CERT-VN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now