Lucene search
Rapid7CVELIST:CVE-2017-5255HistoryDec 20, 2017 - 10:00 p.m.
CVE-2017-5255
2017-12-2022:00:00
CWE-78
rapid7
www.cve.org
4
In version 3.5 and prior of Cambium Networks ePMP firmware, a lack of input sanitation for certain parameters on the web management console allows any authenticated user (including the otherwise low-privilege readonly user) to inject shell meta-characters as part of a specially-crafted POST request to the get_chart function and run OS-level commands, effectively as root.
CNA Affected
[
{
"product": "ePMP",
"vendor": "Cambium Networks",
"versions": [
{
"status": "affected",
"version": "3.5 and prior"
}
]
}
]Related
metasploit
metasploit
Cambium ePMP1000 'get_chart' Shell via Command Injection (v3.1-3.5-RC7)
2017-12-22 18:44:27
Cambium ePMP1000 'ping' Shell via Command Injection (up to v2.5)
2017-12-22 00:06:36
Cambium ePMP 1000 'get_chart' Command Injection (v3.1-3.5-RC7)
2017-12-22 18:44:27
packetstorm
packetstorm
Cambium ePMP1000 3.1-3.5-RC7 Command Injection
2017-12-29 00:00:00
Cambium EPMP 1000 Get_chart Command Injection
2024-09-01 00:00:00
prion
prion
Design/Logic Flaw
2017-12-20 22:29:00
nvd
nvd
CVE-2017-5255
2017-12-20 22:29:00
zdt
zdt
Cambium ePMP1000 3.1-3.5-RC7 Command Injection Exploit
2017-12-29 00:00:00
cve
cve
CVE-2017-5255
2017-12-20 22:29:00
exploitdb
exploitdb