Lucene search
K

85 matches found

NVD
NVD
added 2018/03/22 5:29 a.m.18 views

CVE-2017-17743

Improper input sanitization within the restricted administration shell on UCOPIA Wireless Appliance devices before 4.4.20, 5.0.x before 5.0.19, and 5.1.x before 5.1.11 allows authenticated remote attackers to escape the shell and escalate their privileges by uploading a .bashrc file containing th...

6.7CVSS7AI score0.01127EPSS
Exploits1References1
Cvelist
Cvelist
added 2018/03/22 5:0 a.m.24 views

CVE-2017-17743

Improper input sanitization within the restricted administration shell on UCOPIA Wireless Appliance devices before 4.4.20, 5.0.x before 5.0.19, and 5.1.x before 5.1.11 allows authenticated remote attackers to escape the shell and escalate their privileges by uploading a .bashrc file containing th...

7AI score0.01127EPSS
Exploits1References1
CVE
CVE
added 2018/03/22 5:0 a.m.53 views

CVE-2017-17743

CVE-2017-17743 affects UCOPIA Wireless Appliance: restricted administration shell allows an authenticated attacker to escalate privileges by uploading a .bashrc that contains /bin/sh, effectively escaping the shell. Affected versions are before 4.4.20, 5.0.x before 5.0.19, and 5.1.x before 5.1.11...

6.7CVSS7AI score0.01127EPSS
Exploits1References1Affected Software1
Packet Storm
Packet Storm
added 2017/10/05 12:0 a.m.42 views

UCOPIA Wireless Appliance 5.1 Code Execution

Exploit Title: Unauthenticated remote root code execution on captive portal Ucopia '/var/www/html/upload/bd.php;echo%20t As php is in sudoers without password... https://controller.access.network/upload/bd.php?0=sudo%20/usr/bin/php%20-r%20%27system"id";%27 Just push your ssh key and get nice root...

0.5AI score
Exploits0
OSV
OSV
added 2017/10/03 1:29 a.m.3 views

CVE-2017-11322

The chrootholeclient executable in UCOPIA Wireless Appliance before 5.1.8 allows remote attackers to gain root privileges via a dollar sign $ metacharacter in the argument to chrootholeclient...

8.2CVSS5.8AI score0.04719EPSS
Exploits5References2
NVD
NVD
added 2017/10/03 1:29 a.m.31 views

CVE-2017-11322

The chrootholeclient executable in UCOPIA Wireless Appliance before 5.1.8 allows remote attackers to gain root privileges via a dollar sign $ metacharacter in the argument to chrootholeclient...

8.2CVSS6.9AI score0.04719EPSS
Exploits5References2
Prion
Prion
added 2017/10/03 1:29 a.m.17 views

Command injection

The restricted shell interface in UCOPIA Wireless Appliance before 5.1.8 allows remote authenticated users to gain 'admin' privileges via shell metacharacters in the less command...

6.5CVSS6.8AI score0.08338EPSS
Exploits5References2Affected Software1
Prion
Prion
added 2017/10/03 1:29 a.m.21 views

Code injection

The chrootholeclient executable in UCOPIA Wireless Appliance before 5.1.8 allows remote attackers to gain root privileges via a dollar sign $ metacharacter in the argument to chrootholeclient...

7.2CVSS7.1AI score0.04719EPSS
Exploits5References2Affected Software1
OSV
OSV
added 2017/10/03 1:29 a.m.4 views

CVE-2017-11321

The restricted shell interface in UCOPIA Wireless Appliance before 5.1.8 allows remote authenticated users to gain 'admin' privileges via shell metacharacters in the less command...

7.2CVSS5.8AI score0.08338EPSS
Exploits5References2
NVD
NVD
added 2017/10/03 1:29 a.m.41 views

CVE-2017-11321

The restricted shell interface in UCOPIA Wireless Appliance before 5.1.8 allows remote authenticated users to gain 'admin' privileges via shell metacharacters in the less command...

7.2CVSS6.9AI score0.08338EPSS
Exploits5References2
0day.today
0day.today
added 2017/10/03 12:0 a.m.41 views

UCOPIA Wireless Appliance 5.1 (Captive Portal) - Root Remote Code Execution Vulnerability

Exploit for linux platform in category remote exploits Exploit Title: Unauthenticated remote root code execution on captive portal Ucopia '/var/www/html/upload/bd.php;echo%20t As php is in sudoers without password...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2017/10/02 5:0 p.m.31 views

CVE-2017-11322

The chrootholeclient executable in UCOPIA Wireless Appliance before 5.1.8 allows remote attackers to gain root privileges via a dollar sign $ metacharacter in the argument to chrootholeclient...

7.3AI score0.04719EPSS
Exploits5References2
Cvelist
Cvelist
added 2017/10/02 5:0 p.m.47 views

CVE-2017-11321

The restricted shell interface in UCOPIA Wireless Appliance before 5.1.8 allows remote authenticated users to gain 'admin' privileges via shell metacharacters in the less command...

6.8AI score0.08338EPSS
Exploits5References2
CVE
CVE
added 2017/10/02 5:0 p.m.81 views

CVE-2017-11321

The CVE-2017-11321 issue affects UCOPIA Wireless Appliance (pre-5.1.8) where the restricted shell interface allows remote authenticated users to escalate to admin privileges by exploiting shell metacharacters in the less command. Affected component: restricted shell via less; root cause: improper...

7.2CVSS6.8AI score0.08338EPSS
Exploits5References2Affected Software1
CVE
CVE
added 2017/10/02 5:0 p.m.78 views

CVE-2017-11322

The CVE-2017-11322 issue affects UCOPIA Wireless Appliance prior to 5.1.8, where the chroothole_client executable accepts parameters that can be exploited with a dollar sign ($) metacharacter to achieve root privileges. The vulnerability is tied to the chroothole_client argument handling, enablin...

8.2CVSS7.1AI score0.04719EPSS
Exploits5References2Affected Software1
exploitpack
exploitpack
added 2017/10/02 12:0 a.m.97 views

UCOPIA Wireless Appliance 5.1.8 - Restricted Shell Escape

UCOPIA Wireless Appliance 5.1.8 - Restricted Shell Escape CVE-2017-11321 UCOPIA Wireless Appliance You can also retrieve the IP address of the outgoing interface. For this, you need to log in to the terminal of the virtual machine with the following username and password: admin/bhu85tgb, and then...

6.5CVSS0.2AI score0.08338EPSS
Exploits5
exploitpack
exploitpack
added 2017/10/02 12:0 a.m.26 views

UCOPIA Wireless Appliance 5.1 (Captive Portal) - Root Remote Code Execution

UCOPIA Wireless Appliance 5.1 Captive Portal - Root Remote Code Execution Exploit Title: Unauthenticated remote root code execution on captive portal Ucopia '/var/www/html/upload/bd.php;echo%20t As php is in sudoers without password...

0.6AI score
Exploits0
exploitpack
exploitpack
added 2017/10/02 12:0 a.m.90 views

UCOPIA Wireless Appliance 5.1.8 - Local Privilege Escalation

UCOPIA Wireless Appliance 5.1.8 - Local Privilege Escalation CVE-2017-11322 UCOPIA Wireless Appliance 5.1.8 Privileges Escalation Asset description UCOPIA solutions bring together a combination of software, appliance and cloud services serving small to large customers. More than 12,000 UCOPIA...

7.2CVSS0.7AI score0.04719EPSS
Exploits5
Exploit DB
Exploit DB
added 2017/10/02 12:0 a.m.143 views

UCOPIA Wireless Appliance < 5.1 (Captive Portal) - Root Remote Code Execution

Exploit Title: Unauthenticated remote root code execution on captive portal Ucopia '/var/www/html/upload/bd.php;echo%20t As php is in sudoers without password... https://controller.access.network/upload/bd.php?0=sudo%20/usr/bin/php%20-r%20%27system"id";%27 Just push your ssh key and get nice root...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2017/10/02 12:0 a.m.63 views

UCOPIA Wireless Appliance < 5.1.8 - Local Privilege Escalation

CVE-2017-11322 UCOPIA Wireless Appliance 5.1.8 Privileges Escalation Asset description UCOPIA solutions bring together a combination of software, appliance and cloud services serving small to large customers. More than 12,000 UCOPIA solutions are deployed and maintained by UCOPIA expert partners...

8.2CVSS7.3AI score0.04719EPSS
Exploits5
Rows per page
Query Builder