Path traversal

2017-12-2022:29:00

PRIOn knowledge base

www.prio-n.com

AI Score

8.7

Confidence

High

EPSS

0.027

Percentile

90.6%

JSON

In versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware, an undocumented, root-privilege administration web shell is available using the HTTP path https://<device-ip-or-hostname>/adm/syscmd.asp.

References

blog.rapid7.com/2017/12/19/r7-2017-25-cambium-epmp-and-cnpilot-multiple-vulnerabilities/