CVE-2010-5330

Опубликовано: 11 июн. 2019

Источник: nvd

CVSS3: 9.8

CVSS2: 5

EPSS Средний

Описание

On certain Ubiquiti devices, Command Injection exists via a GET request to stainfo.cgi (aka Show AP info) because the ifname variable is not sanitized, as demonstrated by shell metacharacters. The fixed version is v4.0.1 for 802.11 ISP products, v5.3.5 for AirMax ISP products, and v5.4.5 for AirSync firmware. For example, Nanostation5 (Air OS) is affected.

Ссылки

https://community.ubnt.com/t5/airMAX-General-Discussion/AirOS-Security-Exploit-Updated-Firmware/td-p/212974
Issue Tracking
Patch
Vendor Advisory
https://www.exploit-db.com/exploits/14146
Third Party Advisory
VDB Entry
https://community.ubnt.com/t5/airMAX-General-Discussion/AirOS-Security-Exploit-Updated-Firmware/td-p/212974
Issue Tracking
Patch
Vendor Advisory
https://www.exploit-db.com/exploits/14146
Third Party Advisory
VDB Entry
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2010-5330
US Government Resource

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:ui:airos:*:*:*:*:*:*:*:*

Версия до 4.0.1 (исключая)

cpe:2.3:o:ui:airos:*:*:*:*:*:*:*:*

Версия от 4.0.2 (включая) до 5.3.5 (исключая)

cpe:2.3:o:ui:airos:*:*:*:*:*:*:*:*

Версия от 5.3.6 (включая) до 5.4.5 (исключая)

EPSS

Процентиль: 98%

0.56481

Средний

9.8 Critical

CVSS3

5 Medium

CVSS2

Дефекты

CWE-77

Связанные уязвимости

GHSA-c5j2-ggvf-gwvg

CVSS3: 9.8

github

почти 4 года назад

EPSS

Процентиль: 98%

0.56481

Средний

9.8 Critical

CVSS3

5 Medium

CVSS2

Дефекты

CWE-77