CVE-2017-7918
CVE-2017-7918
Vexday Risk Score
18Low
SSVC decision (CISA)
Attend
PoC available → attend closely
CVSS —EPSS 6.7%KEV nãoPoC —Nuclei —Metasploit simPatch —
Lifecycle
21 Jun 2017Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
An Improper Access Control issue was discovered in Cambium Networks ePMP. After a valid user has used SNMP configuration export, an attacker is able to remotely trigger device configuration backups using specific MIBs. These backups lack proper access control and may allow access to sensitive information and possibly allow for configuration changes.
Affected products
n/a · Cambium Networks ePMPWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →