CVE-2017-5259

Published: Dic 20, 2017 Last Modified: Apr 20, 2025
ExploitDB:
Other exploit source:
Google Dorks:
HIGH 8,8
Source: [email protected]
Attack Vector: network
Attack Complexity: low
Privileges Required: low
User Interaction: none
Scope: unchanged
Confidentiality: high
Integrity: high
Availability: high
HIGH 9,0
Source: [email protected]
Access Vector: network
Access Complexity: low
Authentication: single
Confidentiality: complete
Integrity: complete
Availability: complete

Description

AI Translation Available

In versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware, an undocumented, root-privilege administration web shell is available using the HTTP path https://<device-ip-or-hostname>/adm/syscmd.asp.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score
0,5954
Percentile
1,0th
Updated

EPSS Score Trend (Last 91 Days)

319

Cleartext Transmission of Sensitive Information

Draft
Abstraction: Base Structure: Simple
Common Consequences
Security Scopes Affected:
Integrity Confidentiality
Potential Impacts:
Read Application Data Modify Files Or Directories Other
Applicable Platforms
Technologies: Cloud Computing, ICS/OT, Mobile, Not Technology-Specific, System on Chip, Test/Debug Hardware
Likelihood of Exploit: High
View CWE Details
489

Active Debug Code

Draft
Abstraction: Base Structure: Simple
Common Consequences
Security Scopes Affected:
Confidentiality Integrity Availability Access Control Other
Potential Impacts:
Bypass Protection Mechanism Read Application Data Gain Privileges Or Assume Identity Varies By Context
Applicable Platforms
Technologies: ICS/OT, Not Technology-Specific
View CWE Details
Operating System

Cnpilot E410 Firmware by Cambiumnetworks

Product Information
Vendor Cambiumnetworks
Product Cnpilot E410 Firmware
Version Range Affected
To 4.3.2-r4 (inclusive)
cpe:2.3:o:cambiumnetworks:cnpilot_e410_firmware:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Cnpilot R190N Firmware by Cambiumnetworks

Product Information
Vendor Cambiumnetworks
Product Cnpilot R190N Firmware
Version Range Affected
To 4.3.2-r4 (inclusive)
cpe:2.3:o:cambiumnetworks:cnpilot_r190n_firmware:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Cnpilot R190V Firmware by Cambiumnetworks

Product Information
Vendor Cambiumnetworks
Product Cnpilot R190V Firmware
Version Range Affected
To 4.3.2-r4 (inclusive)
cpe:2.3:o:cambiumnetworks:cnpilot_r190v_firmware:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Cnpilot E600 Firmware by Cambiumnetworks

Product Information
Vendor Cambiumnetworks
Product Cnpilot E600 Firmware
Version Range Affected
To 4.3.2-r4 (inclusive)
cpe:2.3:o:cambiumnetworks:cnpilot_e600_firmware:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Cnpilot E400 Firmware by Cambiumnetworks

Product Information
Vendor Cambiumnetworks
Product Cnpilot E400 Firmware
Version Range Affected
To 4.3.2-r4 (inclusive)
cpe:2.3:o:cambiumnetworks:cnpilot_e400_firmware:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://blog.rapid7.com/2017/12/19/r7-2017-25-cambium-epmp-…
Third Party Advisory
https://blog.rapid7.com/2017/12/19/r7-2017-25-cambium-epmp-and-cnpilot-multiple…
https://blog.rapid7.com/2017/12/19/r7-2017-25-cambium-epmp-…
Third Party Advisory
https://blog.rapid7.com/2017/12/19/r7-2017-25-cambium-epmp-and-cnpilot-multiple…