exploitDog

CVE-2021-3459

Опубликовано: 17 авг. 2021

Источник: nvd

CVSS3: 6.8

CVSS2: 7.2

EPSS Низкий

Описание

A privilege escalation vulnerability was reported in the MM1000 device configuration web server, which could allow privileged shell access and/or arbitrary privileged commands to be executed on the adapter.

Ссылки

https://motorolamentor.zendesk.com/hc/en-us/articles/1260804047750
Mitigation
Vendor Advisory
https://motorolamentor.zendesk.com/hc/en-us/articles/1260804047750
Mitigation
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:motorola:mm1000_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:motorola:mm1000:-:*:*:*:*:*:*:*

EPSS

Процентиль: 15%

0.0005

Низкий

6.8 Medium

CVSS3

7.2 High

CVSS2

Дефекты

CWE-78

CWE-78

Связанные уязвимости

GHSA-64fh-7fr2-j79v

github

больше 3 лет назад

A privilege escalation vulnerability was reported in the MM1000 device configuration web server, which could allow privileged shell access and/or arbitrary privileged commands to be executed on the adapter.

EPSS

Процентиль: 15%

0.0005

Низкий

6.8 Medium

CVSS3

7.2 High

CVSS2

Дефекты

CWE-78

CWE-78