CVE-2020-36902

CRITICAL

UBICOD Medivision Digital Signage 1.5.1 - Auth Bypass

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-36902. PoCs published by LiquidWorm.

AI-analyzed exploit summary This exploit demonstrates an authorization bypass vulnerability in UBICOD Medivision Digital Signage 1.5.1. By sending a crafted HTTP POST request with the parameter 'ft[grp]' set to '3', a normal user can elevate their privileges to super admin.

Description

UBICOD Medivision Digital Signage 1.5.1 contains an authorization bypass vulnerability that allows normal users to escalate privileges by manipulating the 'ft[grp]' parameter. Attackers can send a GET request to /html/user with 'ft[grp]' set to integer value '3' to gain super admin rights without authentication.

Exploits (1)

exploitdb WORKING POC
by LiquidWorm · textwebappshardware
https://www.exploit-db.com/exploits/48684

This exploit demonstrates an authorization bypass vulnerability in UBICOD Medivision Digital Signage 1.5.1. By sending a crafted HTTP POST request with the parameter 'ft[grp]' set to '3', a normal user can elevate their privileges to super admin.

Classification
Working Poc 90%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: UBICOD Medivision Digital Signage 1.5.1
Auth required
Prerequisites: Access to a user account · Network access to the target system
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit, Third Party Advisory, VDB Entry exploit
https://www.exploit-db.com/exploits/48684
Product product
http://www.medivision.co.kr
Exploit, Third Party Advisory vendor-advisory
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2020-5575.php

Scores

CVSS v3 9.8
EPSS 0.0099
EPSS Percentile 58.0%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact total

Details

CWE
CWE-862
Status published
Products (1)
medivision/medivision_digital_signage_firmware 1.5.1
Published Dec 10, 2025
Tracked Since Feb 18, 2026