QwikSec

Security Database

CVE

CWE

Training

CVE-2022-40298

Published: Sep 22, 2022

Modified: May 27, 2025

PUBLISHED

Description

Crestron AirMedia for Windows before 5.5.1.84 has insecure inherited permissions, which leads to a privilege escalation vulnerability found in the AirMedia Windows Application, version 4.3.1.39. A low privileged user can initiate a repair of the system and gain a SYSTEM level shell.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://www.crestron.com/Security/Security_Advisories

x_refsource_MISC

https://www.crestron.com/release_notes/airmedia_windows_installer_release_notes_5.5.1.84.pdf

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.