EUVD-2017-14362

Malware in sbrugna...

EUVD-2017-14361

Malware in sbrugna...

Cambium Networks ePMP Cross-Site Scripting Vulnerability

Cambium Networks ePMP is a suite of wireless network access platforms from Cambium Networks, USA. The platform provides video surveillance, Wi-Fi hotspot and sensor connectivity. A cross-site scripting vulnerability exists in Cambium Networks ePMP using firmware version 3.5 and earlier. An attack...

CVE-2017-5258

In version 3.5 and prior of Cambium Networks ePMP firmware, an attacker who knows or can guess the RW community string can provide a URL for a configuration file over SNMP with XSS strings in certain SNMP OIDs, serve it via HTTP, and the affected device will perform a configuration restore using...

CVE-2017-5256

In version 3.5 and prior of Cambium Networks ePMP firmware, all authenticated users have the ability to update the Device Name and System Description fields in the web administration console, and those fields are vulnerable to persistent cross-site scripting XSS injection...

CVE-2017-5255

In version 3.5 and prior of Cambium Networks ePMP firmware, a lack of input sanitation for certain parameters on the web management console allows any authenticated user including the otherwise low-privilege readonly user to inject shell meta-characters as part of a specially-crafted POST request...

CVE-2017-5257

In version 3.5 and prior of Cambium Networks ePMP firmware, an attacker who knows or guesses the SNMP read/write RW community string can insert XSS strings in certain SNMP OIDs which will execute in the context of the currently-logged on user...

Design/Logic Flaw

In version 3.5 and prior of Cambium Networks ePMP firmware, a lack of input sanitation for certain parameters on the web management console allows any authenticated user including the otherwise low-privilege readonly user to inject shell meta-characters as part of a specially-crafted POST request...

Cross site scripting

In version 3.5 and prior of Cambium Networks ePMP firmware, an attacker who knows or can guess the RW community string can provide a URL for a configuration file over SNMP with XSS strings in certain SNMP OIDs, serve it via HTTP, and the affected device will perform a configuration restore using...

Design/Logic Flaw

In version 3.5 and prior of Cambium Networks ePMP firmware, the non-administrative users 'installer' and 'home' have the capability of changing passwords for other accounts, including admin, after disabling a client-side protection mechanism...

CVE-2017-5258

In version 3.5 and prior of Cambium Networks ePMP firmware, an attacker who knows or can guess the RW community string can provide a URL for a configuration file over SNMP with XSS strings in certain SNMP OIDs, serve it via HTTP, and the affected device will perform a configuration restore using...

CVE-2017-5254

CVE-2017-5254 affects Cambium Networks ePMP firmware 3.5 and earlier. The issue lets non-administrative users labeled installer/home change passwords of other accounts (including admin) after bypassing a client-side protection mechanism, enabling privilege elevation. Documented impact is high (pa...

CVE-2017-5258

CVE-2017-5258 affects Cambium Networks ePMP firmware 3.5 and earlier. The attacker, knowing or guessing the RW community string, can deliver a configuration file URL via SNMP containing XSS strings; the device will restore the attacker’s config via HTTP, inserting XSS. Some connected records desc...

CVE-2017-5255

This CVE affects Cambium Networks ePMP firmware up to v3.5. The web management console lacks input sanitation for certain parameters in the get_chart function, allowing an authenticated user (including a low-privilege readonly user) to inject shell metacharacters in a crafted POST and run OS-leve...