Lucene search
K

85 matches found

Prion
Prion
added 2021/02/02 5:15 a.m.15 views

Command injection

UCOPIA Wi-Fi appliances 6.0.5 allow arbitrary code execution with admin user privileges via an escape from a restricted command...

7.2CVSS8.5AI score0.00518EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2021/02/02 5:4 a.m.24 views

CVE-2020-25035

UCOPIA Wi-Fi appliances 6.0.5 allow arbitrary code execution with root privileges using chrootholeclient's PHP call, a related issue to CVE-2017-11322...

7.8AI score0.00504EPSS
Exploits1References2
CVE
CVE
added 2021/02/02 5:4 a.m.57 views

CVE-2020-25035

CVE-2020-25035 affects UCOPIA Wireless Appliance; the vulnerability lies in the chroothole_client executable, where a dollar-sign metacharacter in the argument can lead to root code execution . Related entries (e.g., CVE-2017-11322) describe remote privilege escalation via the same component befo...

7.2CVSS7.6AI score0.00504EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2021/02/02 5:2 a.m.26 views

CVE-2020-25036

UCOPIA Wi-Fi appliances 6.0.5 allow authenticated remote attackers to escape the restricted administration shell CLI, and access a shell with admin user rights, via an unprotected less command...

8.6AI score0.0204EPSS
Exploits0References2
CVE
CVE
added 2021/02/02 5:2 a.m.57 views

CVE-2020-25036

CVE-2020-25036 affects UCOPIA Wi‑Fi appliances 6.0.5. An authenticated attacker can escape the restricted administration shell (CLI) and obtain a shell with admin rights via an unprotected less command. The available documents do not specify a patch/version to remediate or details about in‑the‑wi...

9CVSS8.5AI score0.0204EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2021/02/02 4:57 a.m.53 views

CVE-2020-25037

CVE-2020-25037 affects UCOPIA Wi‑Fi appliances 6.0.5, where an escape from a restricted command allows arbitrary code execution with admin privileges. The underlying cause is a command‑injection style path enabling elevation to admin level. Exploitation status is not detailed in the provided docu...

8.2CVSS8.4AI score0.00518EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2021/02/02 4:57 a.m.32 views

CVE-2020-25037

UCOPIA Wi-Fi appliances 6.0.5 allow arbitrary code execution with admin user privileges via an escape from a restricted command...

8.5AI score0.00518EPSS
Exploits1References2
CNNVD
CNNVD
added 2021/02/02 12:0 a.m.12 views

UCOPIA Wi-Fi appliances OS Command Injection Vulnerability

A security vulnerability exists in Ucopia Express 6.0.5 that allows an authenticated, remote attacker to escape the restricted administrative shell CLI and access a shell with admin user privileges via unprotected less commands...

9CVSS7.3AI score0.0204EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/02/02 12:0 a.m.8 views

Ucopia Express License Issues Vulnerability

Ucopia Express is a device used to manage Wifi used by the French company Ucopia. A security vulnerability exists in Ucopia Express 6.0.5 that allows the use of chroothole client PHP calls to execute arbitrary code with root privileges...

7.2CVSS7.3AI score0.00504EPSS
Exploits1References4
CNNVD
CNNVD
added 2021/02/02 12:0 a.m.8 views

UCOPIA Wi-Fi appliances code issue vulnerability

Ucopia Express is a device used to manage Wifi used by the French company Ucopia. A security vulnerability exists in Ucopia Express 6.0.5 that allows execution of arbitrary code with admin user privileges to exit restricted commands via escape...

8.2CVSS7.6AI score0.00518EPSS
Exploits1References4
OSV
OSV
added 2018/08/21 4:29 p.m.10 views

CVE-2018-15481

Improper input sanitization within the restricted administration shell on UCOPIA Wireless Appliance devices using firmware version 5.1.x before 5.1.13 allows authenticated remote attackers to escape the shell and escalate their privileges by adding a LocalCommand to the SSH configuration file in...

8.8CVSS5.8AI score0.01319EPSS
Exploits0References1
NVD
NVD
added 2018/08/21 4:29 p.m.16 views

CVE-2018-15481

Improper input sanitization within the restricted administration shell on UCOPIA Wireless Appliance devices using firmware version 5.1.x before 5.1.13 allows authenticated remote attackers to escape the shell and escalate their privileges by adding a LocalCommand to the SSH configuration file in...

8.8CVSS8.8AI score0.01319EPSS
Exploits0References1
Prion
Prion
added 2018/08/21 4:29 p.m.20 views

Input validation

Improper input sanitization within the restricted administration shell on UCOPIA Wireless Appliance devices using firmware version 5.1.x before 5.1.13 allows authenticated remote attackers to escape the shell and escalate their privileges by adding a LocalCommand to the SSH configuration file in...

6.5CVSS8.7AI score0.01319EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2018/08/21 4:0 p.m.20 views

CVE-2018-15481

Improper input sanitization within the restricted administration shell on UCOPIA Wireless Appliance devices using firmware version 5.1.x before 5.1.13 allows authenticated remote attackers to escape the shell and escalate their privileges by adding a LocalCommand to the SSH configuration file in...

8.8AI score0.01319EPSS
Exploits0References1
CVE
CVE
added 2018/08/21 4:0 p.m.41 views

CVE-2018-15481

CVE-2018-15481 affects UCOPIA Wireless Appliance devices running firmware 5.1.x before 5.1.13. The vulnerability is due to improper input sanitization in the restricted administration shell, enabling authenticated remote attackers to escape the shell and escalate privileges by adding a LocalComma...

8.8CVSS8.7AI score0.01319EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2018/05/24 12:0 a.m.3 views

UCOPIA Wireless Appliance Privilege Mobilization Vulnerability (CNVD-2018-11049)

The UCOPIA Wireless Appliance is a wireless device from the French company UCOPIA. A security vulnerability exists in the restricted shell interface of the UCOPIA Wireless Appliance in versions prior to 5.1.8. A remote attacker can exploit the vulnerability to gain 'admin' privileges via shell...

7.2CVSS7.2AI score0.08338EPSS
Exploits5References1
CNVD
CNVD
added 2018/05/24 12:0 a.m.3 views

UCOPIA Wireless Appliance Elevation of Privilege Vulnerability

The UCOPIA Wireless Appliance is a wireless device from the French company UCOPIA. A security vulnerability exists in the chrootholeclient executable file in the UCOPIA Wireless Appliance versions prior to 5.1.8. A remote attacker can exploit this vulnerability by sending parameters with the '$'...

8.2CVSS7.1AI score0.04719EPSS
Exploits5References1
CNVD
CNVD
added 2018/04/10 12:0 a.m.3 views

UCOPIA Wireless Appliance Elevation of Privilege Vulnerability

The UCOPIA Wireless Appliance is a wireless device from the French company UCOPIA. A security vulnerability exists in the restricted administration shell in the UCOPIA Wireless Appliance versions prior to 4.4.20, 5.0.x versions prior to 5.0.19, and 5.1.x versions prior to 5.1.11, which stems from...

6.7CVSS6.9AI score0.01127EPSS
Exploits1References1
Prion
Prion
added 2018/03/22 5:29 a.m.20 views

Input validation

Improper input sanitization within the restricted administration shell on UCOPIA Wireless Appliance devices before 4.4.20, 5.0.x before 5.0.19, and 5.1.x before 5.1.11 allows authenticated remote attackers to escape the shell and escalate their privileges by uploading a .bashrc file containing th...

6.5CVSS7AI score0.01127EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2018/03/22 5:29 a.m.4 views

CVE-2017-17743

Improper input sanitization within the restricted administration shell on UCOPIA Wireless Appliance devices before 4.4.20, 5.0.x before 5.0.19, and 5.1.x before 5.1.11 allows authenticated remote attackers to escape the shell and escalate their privileges by uploading a .bashrc file containing th...

6.7CVSS5.8AI score0.01127EPSS
Exploits1References1
Rows per page
Query Builder