An issue was discovered on Cerner Connectivity Engine (CCE) 4 devices. The hostname, timezone, and NTP server configurations on the CCE device are vulnerable to command injection by sending a crafted configuration file over the network.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Connectivity_engine_4_firmware | Cerner | * | 201812 (excluding) |