Lucene search

PRIOn knowledge basePRION:CVE-2022-47531

HistoryDec 05, 2023 - 6:15 a.m.

Authentication flaw

2023-12-0506:15:00

PRIOn knowledge base

www.prio-n.com

ericsson

epg

authentication

flaw

bypass

cli

execute

commands

unix

shell

7.5 High

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

18.2%

JSON

An issue was discovered in Ericsson Evolved Packet Gateway (EPG) versions 3.x before 3.25 and 2.x before 2.16, allows authenticated users to bypass system CLI and execute commands they are authorized to execute directly in the UNIX shell.

CPENameOperatorVersion
evolved_packet_gatewayge2.0
evolved_packet_gatewaylt2.16
evolved_packet_gatewayge3.0
evolved_packet_gatewaylt3.25

Name	Operator	Version
evolved_packet_gateway	ge	2.0
evolved_packet_gateway	lt	2.16
evolved_packet_gateway	ge	3.0
evolved_packet_gateway	lt	3.25

References

www.gruppotim.it/it/footer/red-team.html