CVSS3
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
26.5%
Cradlepoint IBR600 NCOS versions 6.5.0.160bc2e and prior are vulnerable
to shell escape, which enables local attackers with non-superuser
credentials to gain full, unrestrictive shell access which may allow an
attacker to execute arbitrary code.
Vendor | Product | Version | CPE |
---|---|---|---|
moxa | uc-8580-t-lx_firmware | 1.1 | cpe:2.3:o:moxa:uc-8580-t-lx_firmware:1.1:*:*:*:*:*:*:* |
moxa | uc-8580-t-lx | - | cpe:2.3:h:moxa:uc-8580-t-lx:-:*:*:*:*:*:*:* |
moxa | uc-8580-t-ct-lx_firmware | 1.1 | cpe:2.3:o:moxa:uc-8580-t-ct-lx_firmware:1.1:*:*:*:*:*:*:* |
moxa | uc-8580-t-ct-lx | - | cpe:2.3:h:moxa:uc-8580-t-ct-lx:-:*:*:*:*:*:*:* |
moxa | uc-8580-t-q-lx_firmware | 1.1 | cpe:2.3:o:moxa:uc-8580-t-q-lx_firmware:1.1:*:*:*:*:*:*:* |
moxa | uc-8580-t-q-lx | - | cpe:2.3:h:moxa:uc-8580-t-q-lx:-:*:*:*:*:*:*:* |
moxa | uc-8580-t-ct-q-lx_firmware | 1.1 | cpe:2.3:o:moxa:uc-8580-t-ct-q-lx_firmware:1.1:*:*:*:*:*:*:* |
moxa | uc-8580-t-ct-q-lx | - | cpe:2.3:h:moxa:uc-8580-t-ct-q-lx:-:*:*:*:*:*:*:* |
moxa | uc-8580-q-lx_firmware | 1.1 | cpe:2.3:o:moxa:uc-8580-q-lx_firmware:1.1:*:*:*:*:*:*:* |
moxa | uc-8580-q-lx | - | cpe:2.3:h:moxa:uc-8580-q-lx:-:*:*:*:*:*:*:* |
[
{
"defaultStatus": "unaffected",
"platforms": [
"NetCloud OS (NCOS)"
],
"product": "IBR600 ",
"vendor": "Cradlepoint",
"versions": [
{
"lessThanOrEqual": "6.5.0.160bc2e",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
]