Critical severity9.8NVD Advisory· Published Jul 17, 2018· Updated Jun 17, 2026
CVE-2018-13859
CVE-2018-13859
Description
MusicCenter / Trivum Multiroom Setup Tool V8.76 - SNR 8604.26 - C4 Professional before V9.34 build 13381 - 12.07.18, allow unauthorized remote attackers to reset the authentication via the "/xml/system/setAttribute.xml" URL, using the GET request "?id=0&attr=protectAccess&newValue=0" (a successful attack will allow attackers to login without authorization).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <9.34 build 13381
- Range: <9.34 build 13381
Patches
Vulnerability mechanics
References
3- www.exploit-db.com/exploits/45088/nvdExploitThird Party AdvisoryVDB Entry
- update.trivum.com/update/v9-changes.htmlnvdVendor Advisory
- vulncode.com/advisory/CVE-2018-13859nvdThird Party Advisory
News mentions
0No linked articles in our index yet.