CVE-2022-1356

Cambium Networks cnMaestro use of Potentially Dangerous Function

CVSS 7.1 HIGHEPSS 0.3%CWE-78

cnMaestro is vulnerable to a local privilege escalation. By default, a user does not have root privileges. However, a user can run scripts as sudo, which could allow an attacker to gain root privileges when running user scripts outside allowed commands.

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

Produtos afetados

Cambium Networks · cnMaestro

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://www.cisa.gov/uscert/ics/advisories/icsa-22-132-04