Brightsign 4k242 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Brightsign 4k242 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2017-17739 — CVSS 9.8 (critical): The BrightSign Digital Signage (4k242) device (Firmware 6.2.63 and below) has directory traversal via the /storage.html rp parameter…
CVE-2017-17738 — CVSS 7.5 (high): The BrightSign Digital Signage (4k242) device (Firmware 6.2.63 and below) allows renaming and modifying files via /tools.html.
CVE-2017-17737 — CVSS 6.1 (medium): The BrightSign Digital Signage (4k242) device (Firmware 6.2.63 and below) has XSS via the REF parameter to /network_diagnostics.html or…