Command injection

2018-02-0504:29:00

PRIOn knowledge base

www.prio-n.com

7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

42.9%

JSON

An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x before 5.8.6.9 and 5.9.x before 5.9.1.3. There is a Hidden Root Shell by entering the administrator password in conjunction with the ‘service start-shell’ CLI command.

CPENameOperatorVersion
wingge5.9.0
winglt5.9.1.3
wingge5.0
winglt5.8.6.9

Name	Operator	Version
wing	ge	5.9.0
wing	lt	5.9.1.3
wing	ge	5.0
wing	lt	5.8.6.9

References

gtacknowledge.extremenetworks.com/articles/Vulnerability_Notice/VN-2018-003