Vulnerabilidades em Cambium Networks

17 resultados
CVE-2017-5255In version 3.5 and prior of Cambium Networks ePMP firmware, a lack of input sanitation for certain parameters on the web management console EPSS 74.6%CVE-2017-5254In version 3.5 and prior of Cambium Networks ePMP firmware, the non-administrative users 'installer' and 'home' have the capability of changEPSS 53.7%CVE-2017-5259In versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware, an undocumented, root-privilege administration web shell is available uEPSS 39.2%CVE-2017-5261In versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware, the 'ping' and 'traceroute' functions of the web administrative consoleEPSS 8.9%CVE-2017-5260In versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware, although the option to access the configuration file is not available iEPSS 8.1%CVE-2017-5262In versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware, the SNMP read-only (RO) community string has access to sensitive informEPSS 4.9%CVE-2022-1360HIGHCambium Networks cnMaestro OS Command InjectionEPSS 1.7%CVE-2022-1357CRITICALCambium Networks cnMaestro OS Command InjectionEPSS 1.6%CVE-2022-1359MEDIUMCambium Networks cnMaestro Path TraversalEPSS 0.9%CVE-2022-1361HIGHCambium Networks cnMaestro SQL InjectionEPSS 0.9%CVE-2022-1358MEDIUMCambium Networks cnMaestro SQL InjectionEPSS 0.8%CVE-2022-1362MEDIUMCambium Networks cnMaestro OS Command InjectionEPSS 0.7%CVE-2017-5258In version 3.5 and prior of Cambium Networks ePMP firmware, an attacker who knows or can guess the RW community string can provide a URL forEPSS 0.5%CVE-2017-5257In version 3.5 and prior of Cambium Networks ePMP firmware, an attacker who knows (or guesses) the SNMP read/write (RW) community string canEPSS 0.5%CVE-2017-5256In version 3.5 and prior of Cambium Networks ePMP firmware, all authenticated users have the ability to update the Device Name and System DeEPSS 0.5%CVE-2017-5263Versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware lack CSRF controls that can mitigate the effects of CSRF attacks, which areEPSS 0.3%CVE-2022-1356HIGHCambium Networks cnMaestro use of Potentially Dangerous FunctionEPSS 0.3%