QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2020-36915

Back to search

CVE-2020-36915

Published: Jan 6, 2026

Modified: Jan 6, 2026

PUBLISHED

CVSS v3.1

7.5

HIGH

Description

Adtec Digital SignEdje Digital Signage Player v2.08.28 contains multiple hardcoded default credentials that allow unauthenticated remote access to web, telnet, and SSH interfaces. Attackers can exploit these credentials to gain root-level access and execute system commands across multiple Adtec Digital product versions.

VendorProductVersions

Adtecdigital

SignEdje Digital Signage Player

affected
2.08.28

Adtecdigital

mediaHUB HD-Pro High & Standard Definition MPEG2 Encoder

affected
3.07.19

Adtecdigital

afiniti Multi-Carrier Platform

affected
1905_11

Adtecdigital

EN-31 Dual Channel DSNG Encoder / Modulator

affected
2.01.15

Adtecdigital

EN-210 Multi-CODEC 10-bit Encoder / Modulator

affected
3.00.29

Adtecdigital

EN-200 1080p AVC Low Latency Encoder / Modulator

affected
3.00.29

Adtecdigital

ED-71 10-bit / 1080p Integrated Receiver Decoder

affected
2.02.24

Adtecdigital

edje-5110 Standard Definition MPEG2 Encoder

affected
1.02.05

Adtecdigital

edje-4111 HD Digital Media Player

affected
2.07.09

Adtecdigital

Soloist HD-Pro Broadcast Decoder

affected
2.07.09

Adtecdigital

adManage Traffic & Media Management Application

affected
2.5.4

Weaknesses (CWE)

CWE-798
CWE-1392

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now