Lucene search

[email protected]CVE-2018-5795

HistoryFeb 05, 2018 - 4:29 a.m.

CVE-2018-5795

2018-02-0504:29:00

[email protected]

web.nvd.nist.gov

extreme networks

extremewireless

wing

cve-2018-5795

access point

controller

nvd

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:N/I:P/A:N

4.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N

5.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

21.8%

JSON

An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x before 5.8.6.9 and 5.9.x before 5.9.1.3. There is Arbitrary File Write from the WebGUI on the WiNG Access Point / Controller.

Affected configurations

NVD

Node

extremewirelesswingRange5.0–5.8.6.9

extremewirelesswingRange5.9.0–5.9.1.3

CPENameOperatorVersion
extremewireless:wingextremewireless winglt5.8.6.9
extremewireless:wingextremewireless winglt5.9.1.3

CPE	Name	Operator	Version
extremewireless:wing	extremewireless wing	lt	5.8.6.9
extremewireless:wing	extremewireless wing	lt	5.9.1.3

References

gtacknowledge.extremenetworks.com/articles/Vulnerability_Notice/VN-2018-003

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:N/I:P/A:N

4.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N

5.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

21.8%

JSON

Related for CVE-2018-5795

cvelist1 nvd1 prion1