CVE-2017-7918 in ePMPinfo

Summary

An Improper Access Control issue was discovered in Cambium Networks ePMP. After a valid user has used SNMP configuration export, an attacker is able to remotely trigger device configuration backups using specific MIBs. These backups lack proper access control and may allow access to sensitive information and possibly allow for configuration changes.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

04/18/2017

Disclosure

06/21/2017

Moderation

VulDB entry created

Entries

VDB-102735 (1)

CPE

ready

CWE

CWE-284 (Confirmed)

CVSS

6.5

EPSS

0.42228

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-7918
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-7918
CVE Details	https://www.cvedetails.com/cve/CVE-2017-7918/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!