CVE-2022-1356

Cambium Networks cnMaestro use of Potentially Dangerous Function

CVSS 7.1 HIGHEPSS 0.3%CWE-78

cnMaestro is vulnerable to a local privilege escalation. By default, a user does not have root privileges. However, a user can run scripts as sudo, which could allow an attacker to gain root privileges when running user scripts outside allowed commands.

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

Productos afectados

Cambium Networks · cnMaestro

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://www.cisa.gov/uscert/ics/advisories/icsa-22-132-04