Technical Advisory – Sunhillo SureLine Unauthenticated OS Command Injection (CVE-2021-36380)

Vendor: Sunhillo Vendor URL: https://www.sunhillo.com/ Versions affected: SureLine <= 8.7.0 Systems Affected: Any using SureLine Author: Liam Glanfield <liam.glanfield@nccgroup.com> Advisory URL / CVE Identifier: CVE-2021-36380 Risk: Critical - complete compromise of the host Summary Sunhillo is an industry leader in surveillance data distribution. The Sunhillo SureLine application contained an unauthenticated operating system (OS) command injection … Continue reading Technical Advisory – Sunhillo SureLine Unauthenticated OS Command Injection (CVE-2021-36380)