In instances where the screen is visible and remote mouse connection is enabled, KramerAV VIA Connect (2) and VIA Go (2) devices with a version prior to 4.0.1.1326 can be exploited to achieve local code execution at the root level.
CPE | Name | Operator | Version |
---|---|---|---|
via_connect2_firmware | lt | 4.0.1.1326 | |
via_go2_firmware | lt | 4.0.1.1326 |