Описание
An Improper Privilege Management issue was discovered in Cambium Networks ePMP. The privileges for SNMP community strings are not properly restricted, which may allow an attacker to gain access to sensitive information and possibly allow for configuration changes.
Ссылки
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:cambium_networks:epmp_1000_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:cambium_networks:epmp_1000:-:*:*:*:*:*:*:*
Конфигурация 2
Одновременно
cpe:2.3:o:cambium_networks:epmp_elevate_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:cambium_networks:epmp_elevate:-:*:*:*:*:*:*:*
Конфигурация 3
Одновременно
cpe:2.3:o:cambium_networks:epmp_2000_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:cambium_networks:epmp_2000:-:*:*:*:*:*:*:*
Конфигурация 4
Одновременно
cpe:2.3:o:cambium_networks:epmp_1000_hotspot_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:cambium_networks:epmp_1000_hotspot:-:*:*:*:*:*:*:*
EPSS
Процентиль: 97%
0.38105
Средний
7.6 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-269
CWE-269
Связанные уязвимости
CVSS3: 7.6
github
больше 3 лет назад
An Improper Privilege Management issue was discovered in Cambium Networks ePMP. The privileges for SNMP community strings are not properly restricted, which may allow an attacker to gain access to sensitive information and possibly allow for configuration changes.
EPSS
Процентиль: 97%
0.38105
Средний
7.6 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-269
CWE-269