Lucene search
K

8 matches found

Packet Storm
Packet Storm
added 2024/09/01 12:0 a.m.167 views

Cambium CnPilot R200/r201 Login Scanner And Config Dump

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cambium cnPilot r200/r201 Login Scanner and Config Dump', 'Description' = % This module scans for Cambium cnPilot r200/r201 management login...

9CVSS7.1AI score0.08133EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.262 views

Cambium CnPilot R200/r201 Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Cambium cnPilot r200/r201 Command Execution as 'root'", 'Description' = %q Cambium cnPilot r200/r201 device software versions 4.2.3-R4 to 4.3.3-R...

9CVSS7.4AI score0.39181EPSS
Exploits2
CNVD
CNVD
added 2017/12/21 12:0 a.m.5 views

Cambium Networks cnPilot Backdoor Access Elevation of Privilege Vulnerability

Cambium Networks cnPilot is a cloud-enabled managed single-band router product from Cambium Networks, USA. A security vulnerability exists in Cambium Networks cnPilot using firmware version 4.3.2-R4 and earlier. An attacker can exploit the vulnerability by accessing the web shell using the...

9CVSS7AI score0.39181EPSS
Exploits2References1
OSV
OSV
added 2017/12/20 10:29 p.m.8 views

CVE-2017-5259

In versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware, an undocumented, root-privilege administration web shell is available using the HTTP path https:///adm/syscmd.asp...

8.8CVSS7.3AI score0.39181EPSS
Exploits2References1
Metasploit
Metasploit
added 2017/12/18 10:32 p.m.46 views

Cambium cnPilot r200/r201 SNMP Enumeration

Cambium cnPilot r200/r201 devices can be administered using SNMP. The device configuration contains IP addresses, keys, passwords, & lots of juicy information. This module exploits an access control flaw, which allows remotely extracting sensitive information such as account passwords, WiFI PSK, ...

8CVSS0.2AI score0.04858EPSS
Exploits2
Metasploit
Metasploit
added 2017/12/18 10:32 p.m.86 views

Cambium cnPilot r200/r201 Command Execution as 'root'

Cambium cnPilot r200/r201 device software versions 4.2.3-R4 to 4.3.3-R4, contain an undocumented, backdoor 'root' shell. This shell is accessible via a specific url, to any authenticated user. The module uses this shell to execute arbitrary system commands as 'root'. This module requires...

8.8CVSS7.7AI score0.39181EPSS
Exploits2
Metasploit
Metasploit
added 2017/12/18 10:32 p.m.42 views

Cambium cnPilot r200/r201 Login Scanner and Config Dump

This module scans for Cambium cnPilot r200/r201 management login portals, attempts to identify valid credentials, and dump device configuration. The device has at least two 2 users - admin and user. Due to an access control vulnerability, it is possible for 'user' account to access full device...

8.8CVSS0.4AI score0.08133EPSS
Exploits2
Metasploit
Metasploit
added 2017/12/18 10:32 p.m.62 views

Cambium cnPilot r200/r201 File Path Traversal

This module exploits a File Path Traversal vulnerability in Cambium cnPilot r200/r201 to read arbitrary files off the file system. Affected versions - 4.3.3-R4 and prior. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framewor...

8.8CVSS0.1AI score0.0889EPSS
Exploits2
Rows per page
Query Builder