3 matches found
CVE-2017-5260
creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/cnpilotrwebloginloot.rb 2025-02-06 03:13:43+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:09:57+00:00| seen...
CVE-2017-5260
CVE-2017-5260 (Cambium cnPilot) affects cnPilot firmware 4.3.2-R4 and earlier. A low-privilege user can access the device configuration via direct object reference to /goform/down_cfg_file, bypassing normal ACLs. This DRO exposure allows full device configuration data, including sensitive informa...
Cambium cnPilot r200/r201 Login Scanner and Config Dump
This module scans for Cambium cnPilot r200/r201 management login portals, attempts to identify valid credentials, and dump device configuration. The device has at least two 2 users - admin and user. Due to an access control vulnerability, it is possible for 'user' account to access full device...