Vulnerabilities in Tightrope Media Systems Carousel <=7.0.4.104 (and likely newer)

While on a recent penetration test, I discovered a digital signage system made by Tightrope Media Systems (TRMS). The client was using this software on an appliance provided by TRMS which was essentially an x86 Windows 10 PC. I was able to gain access into the web-interface of this system due to an unchanged default …

Vulnerabilities in Tightrope Media Systems Carousel <=7.0.4.104 (and likely newer) Read More »