How severe is CVE-2017-5261?

CVE-2017-5261 has a CVSS v3 score of 8.8 (HIGH).

CVE-2017-5261

8.8HIGH

In versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware, the 'ping' and 'traceroute' functions of the web administrative console expose a file path traversal vulnerability, accessible to a

Publicado: 12/20/2017Actualizado: 4/20/2025

Descripción

In versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware, the 'ping' and 'traceroute' functions of the web administrative console expose a file path traversal vulnerability, accessible to all authenticated users.

Análisis IAImpulsado por IA

Productos Afectados

cambiumnetworkscnpilot_r190v_firmware

cambiumnetworkscnpilot_r190v

cambiumnetworkscnpilot_e410_firmware

cambiumnetworkscnpilot_e410

cambiumnetworkscnpilot_r190n_firmware

cambiumnetworkscnpilot_r190n

cambiumnetworkscnpilot_e400_firmware

cambiumnetworkscnpilot_e400

cambiumnetworkscnpilot_e600_firmware

cambiumnetworkscnpilot_e600

Referencias

https://blog.rapid7.com/2017/12/19/r7-2017-25-cambium-epmp-and-cnpilot-multiple-vulnerabilities/
Third Party Advisory
https://blog.rapid7.com/2017/12/19/r7-2017-25-cambium-epmp-and-cnpilot-multiple-vulnerabilities/
Third Party Advisory