Primary

Context

BrightSign Players Privilege Escalation Vulnerability

Vulnerability

A vulnerability allowing execution with unnecessary privileges has been identified in BrightSign players running BrightSign OS series 4 prior to v8.5.53.1 and series 5 prior to v9.0.166. This vulnerability could lead to privilege escalation on the device after code execution has been achieved.

Impact

Exploitation of this vulnerability could allow for privilege escalation on the device, execution of arbitrary code on the underlying operating system, or exploitation of easily guessed passwords.

Remediation

Users can update to BrightSign OS version 8.5.53.1 for series 4 players or version 9.0.166 for series 5 players. Both versions are available on the BrightSign download site.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

5.2

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

5.2

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

BrightSign Players Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating