{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2020-36915", "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "state": "PUBLISHED", "assignerShortName": "VulnCheck", "dateReserved": "2026-01-03T14:10:13.301Z", "datePublished": "2026-01-06T15:52:24.350Z", "dateUpdated": "2026-01-06T19:42:42.982Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "shortName": "VulnCheck", "dateUpdated": "2026-01-06T15:52:24.350Z"}, "datePublic": "2020-07-24T00:00:00.000Z", "title": "Adtec Digital SignEdje Digital Signage Player v2.08.28 Default Credentials", "descriptions": [{"lang": "en", "value": "Adtec Digital SignEdje Digital Signage Player v2.08.28 contains multiple hardcoded default credentials that allow unauthenticated remote access to web, telnet, and SSH interfaces. Attackers can exploit these credentials to gain root-level access and execute system commands across multiple Adtec Digital product versions."}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "Use of Hard-coded Credentials", "cweId": "CWE-798", "type": "CWE"}, {"lang": "en", "description": "Use of Default Credentials", "cweId": "CWE-1392", "type": "CWE"}]}], "affected": [{"vendor": "Adtecdigital", "product": "SignEdje Digital Signage Player", "versions": [{"version": "2.08.28", "status": "affected"}]}, {"vendor": "Adtecdigital", "product": "mediaHUB HD-Pro High & Standard Definition MPEG2 Encoder", "versions": [{"version": "3.07.19", "status": "affected"}]}, {"vendor": "Adtecdigital", "product": "afiniti Multi-Carrier Platform", "versions": [{"version": "1905_11", "status": "affected"}]}, {"vendor": "Adtecdigital", "product": "EN-31 Dual Channel DSNG Encoder / Modulator", "versions": [{"version": "2.01.15", "status": "affected"}]}, {"vendor": "Adtecdigital", "product": "EN-210 Multi-CODEC 10-bit Encoder / Modulator", "versions": [{"version": "3.00.29", "status": "affected"}]}, {"vendor": "Adtecdigital", "product": "EN-200 1080p AVC Low Latency Encoder / Modulator", "versions": [{"version": "3.00.29", "status": "affected"}]}, {"vendor": "Adtecdigital", "product": "ED-71 10-bit / 1080p Integrated Receiver Decoder", "versions": [{"version": "2.02.24", "status": "affected"}]}, {"vendor": "Adtecdigital", "product": "edje-5110 Standard Definition MPEG2 Encoder", "versions": [{"version": "1.02.05", "status": "affected"}]}, {"vendor": "Adtecdigital", "product": "edje-4111 HD Digital Media Player", "versions": [{"version": "2.07.09", "status": "affected"}]}, {"vendor": "Adtecdigital", "product": "Soloist HD-Pro Broadcast Decoder", "versions": [{"version": "2.07.09", "status": "affected"}]}, {"vendor": "Adtecdigital", "product": "adManage Traffic & Media Management Application", "versions": [{"version": "2.5.4", "status": "affected"}]}], "metrics": [{"cvssV4_0": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "baseScore": 8.7, "baseSeverity": "HIGH", "exploitMaturity": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N", "version": "4.0", "vulnAvailabilityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "format": "CVSS"}, {"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "format": "CVSS"}], "references": [{"url": "https://www.exploit-db.com/exploits/48954", "name": "ExploitDB-48954", "tags": ["exploit"]}, {"url": "https://www.adtecdigital.com", "name": "Adtec Digital Official Homepage", "tags": ["product"]}, {"url": "https://www.zeroscience.mk/en/vulnerabilities/ZSL-2020-5603.php", "name": "Zero Science Lab Disclosure (ZSL-2020-5603)", "tags": ["third-party-advisory"]}, {"url": "https://packetstorm.news/files/id/159709", "name": "Packet Storm Security Exploit Entry", "tags": ["exploit"]}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/190628", "name": "IBM X-Force Vulnerability Exchange", "tags": ["vdb-entry"]}, {"name": "VulnCheck Advisory: Adtec Digital SignEdje Digital Signage Player v2.08.28 Default Credentials", "tags": ["third-party-advisory"], "url": "https://www.vulncheck.com/advisories/adtec-digital-signedje-digital-signage-player-default-credentials"}], "credits": [{"lang": "en", "value": "LiquidWorm as Gjoko Krstic of Zero Science Lab", "type": "finder"}], "x_generator": {"engine": "vulncheck"}}, "adp": [{"references": [{"url": "https://www.exploit-db.com/exploits/48954", "tags": ["exploit"]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-01-06T19:42:21.293291Z", "id": "CVE-2020-36915", "options": [{"Exploitation": "poc"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-06T19:42:42.982Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2020-36915", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-01-06T19:42:21.293291Z"}}}], "references": [{"url": "https://www.exploit-db.com/exploits/48954", "tags": ["exploit"]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-06T19:42:33.475Z"}}], "cna": {"title": "Adtec Digital SignEdje Digital Signage Player v2.08.28 Default Credentials", "credits": [{"lang": "en", "type": "finder", "value": "LiquidWorm as Gjoko Krstic of Zero Science Lab"}], "metrics": [{"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 8.7, "Automatable": "NOT_DEFINED", "attackVector": "NETWORK", "baseSeverity": "HIGH", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}}, {"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}], "affected": [{"vendor": "Adtecdigital", "product": "SignEdje Digital Signage Player", "versions": [{"status": "affected", "version": "2.08.28"}]}, {"vendor": "Adtecdigital", "product": "mediaHUB HD-Pro High & Standard Definition MPEG2 Encoder", "versions": [{"status": "affected", "version": "3.07.19"}]}, {"vendor": "Adtecdigital", "product": "afiniti Multi-Carrier Platform", "versions": [{"status": "affected", "version": "1905_11"}]}, {"vendor": "Adtecdigital", "product": "EN-31 Dual Channel DSNG Encoder / Modulator", "versions": [{"status": "affected", "version": "2.01.15"}]}, {"vendor": "Adtecdigital", "product": "EN-210 Multi-CODEC 10-bit Encoder / Modulator", "versions": [{"status": "affected", "version": "3.00.29"}]}, {"vendor": "Adtecdigital", "product": "EN-200 1080p AVC Low Latency Encoder / Modulator", "versions": [{"status": "affected", "version": "3.00.29"}]}, {"vendor": "Adtecdigital", "product": "ED-71 10-bit / 1080p Integrated Receiver Decoder", "versions": [{"status": "affected", "version": "2.02.24"}]}, {"vendor": "Adtecdigital", "product": "edje-5110 Standard Definition MPEG2 Encoder", "versions": [{"status": "affected", "version": "1.02.05"}]}, {"vendor": "Adtecdigital", "product": "edje-4111 HD Digital Media Player", "versions": [{"status": "affected", "version": "2.07.09"}]}, {"vendor": "Adtecdigital", "product": "Soloist HD-Pro Broadcast Decoder", "versions": [{"status": "affected", "version": "2.07.09"}]}, {"vendor": "Adtecdigital", "product": "adManage Traffic & Media Management Application", "versions": [{"status": "affected", "version": "2.5.4"}]}], "datePublic": "2020-07-24T00:00:00.000Z", "references": [{"url": "https://www.exploit-db.com/exploits/48954", "name": "ExploitDB-48954", "tags": ["exploit"]}, {"url": "https://www.adtecdigital.com", "name": "Adtec Digital Official Homepage", "tags": ["product"]}, {"url": "https://www.zeroscience.mk/en/vulnerabilities/ZSL-2020-5603.php", "name": "Zero Science Lab Disclosure (ZSL-2020-5603)", "tags": ["third-party-advisory"]}, {"url": "https://packetstorm.news/files/id/159709", "name": "Packet Storm Security Exploit Entry", "tags": ["exploit"]}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/190628", "name": "IBM X-Force Vulnerability Exchange", "tags": ["vdb-entry"]}, {"url": "https://www.vulncheck.com/advisories/adtec-digital-signedje-digital-signage-player-default-credentials", "name": "VulnCheck Advisory: Adtec Digital SignEdje Digital Signage Player v2.08.28 Default Credentials", "tags": ["third-party-advisory"]}], "x_generator": {"engine": "vulncheck"}, "descriptions": [{"lang": "en", "value": "Adtec Digital SignEdje Digital Signage Player v2.08.28 contains multiple hardcoded default credentials that allow unauthenticated remote access to web, telnet, and SSH interfaces. Attackers can exploit these credentials to gain root-level access and execute system commands across multiple Adtec Digital product versions."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-798", "description": "Use of Hard-coded Credentials"}, {"lang": "en", "type": "CWE", "cweId": "CWE-1392", "description": "Use of Default Credentials"}]}], "providerMetadata": {"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "shortName": "VulnCheck", "dateUpdated": "2026-01-06T15:52:24.350Z"}}}, "cveMetadata": {"cveId": "CVE-2020-36915", "state": "PUBLISHED", "dateUpdated": "2026-01-06T19:42:42.982Z", "dateReserved": "2026-01-03T14:10:13.301Z", "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "datePublished": "2026-01-06T15:52:24.350Z", "assignerShortName": "VulnCheck"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Adtec Digital SignEdje Digital Signage Player v2.08.28 contains multiple hardcoded default credentials that allow unauthenticated remote access to web, telnet, and SSH interfaces. Attackers can exploit these credentials to gain root-level access and execute system commands across multiple Adtec Digital product versions."}], "id": "CVE-2020-36915", "lastModified": "2026-01-06T20:15:44.150", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "disclosure@vulncheck.com", "type": "Secondary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 8.7, "baseSeverity": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "disclosure@vulncheck.com", "type": "Secondary"}]}, "published": "2026-01-06T16:15:47.550", "references": [{"source": "disclosure@vulncheck.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/190628"}, {"source": "disclosure@vulncheck.com", "url": "https://packetstorm.news/files/id/159709"}, {"source": "disclosure@vulncheck.com", "url": "https://www.adtecdigital.com"}, {"source": "disclosure@vulncheck.com", "url": "https://www.exploit-db.com/exploits/48954"}, {"source": "disclosure@vulncheck.com", "url": "https://www.vulncheck.com/advisories/adtec-digital-signedje-digital-signage-player-default-credentials"}, {"source": "disclosure@vulncheck.com", "url": "https://www.zeroscience.mk/en/vulnerabilities/ZSL-2020-5603.php"}, {"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "url": "https://www.exploit-db.com/exploits/48954"}], "sourceIdentifier": "disclosure@vulncheck.com", "vulnStatus": "Received", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-798"}, {"lang": "en", "value": "CWE-1392"}], "source": "disclosure@vulncheck.com", "type": "Secondary"}]}

{}

{}