7.6
CVE-2017-7922
- EPSS 9.64%
- Veröffentlicht 21.06.2017 19:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
- Quelle ics-cert@hq.dhs.gov
- CVE-Watchlists
- Unerledigt
LoginAn Improper Privilege Management issue was discovered in Cambium Networks ePMP. The privileges for SNMP community strings are not properly restricted, which may allow an attacker to gain access to sensitive information and possibly allow for configuration changes.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Cambium Networks ≫ Epmp 1000 Firmware Version-
Cambium Networks ≫ Epmp Elevate Firmware Version-
Cambium Networks ≫ Epmp 2000 Firmware Version-
Cambium Networks ≫ Epmp 1000 Hotspot Firmware Version-
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 9.64% | 0.949 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.6 | 2.8 | 4.7 |
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L
|
| nvd@nist.gov | 6.5 | 8 | 6.4 |
AV:N/AC:L/Au:S/C:P/I:P/A:P
|
CWE-269 Improper Privilege Management
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
http://www.securityfocus.com/bid/99083
https://ics-cert.us-cert.gov/advisories/ICSA-17-166-01