Vulnerability in Crestron Touchscreen X60s
CVE-2025-47416
A vulnerability exists in the ConsoleFindCommandMatchList function in libsymproc. so imported by ctpd that may lead to unauthorized execution of an attacker-defined file that gets prioritized by the ConsoleFindCommandMatchList. A third-…
EPSS: 0.003 (26.4th percentile) — read the EPSS interpretation.
Affected products
- Crestron Touchscreen X60s — versions 3.002.1061
- Crestron Touchscreen X70 — versions 3.000.0110.001
Weakness classification (CWE)
Public proof-of-concept exploits
References
- 25b0b659-c4b4-483f-aecb-067757d23ef3 (vendor-advisory)
- 25b0b659-c4b4-483f-aecb-067757d23ef3 (patch)
Frequently asked questions
- What is CVE-2025-47416?
- CVE-2025-47416 is a vulnerability in Crestron Touchscreen X60s, classified under Incorrect Comparison. Published 2025-09-09.
- Is CVE-2025-47416 known to be exploited?
- 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.