An Improper Access Control issue was discovered in Cambium Networks ePMP. After a valid user has used SNMP configuration export, an attacker is able to remotely trigger device configuration backups using specific MIBs. These backups lack proper access control and may allow access to sensitive information and possibly allow for configuration changes.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/99083 | Third Party Advisory US Government Resource |
https://ics-cert.us-cert.gov/advisories/ICSA-17-166-01 | Third Party Advisory US Government Resource |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: icscert
Published: 2017-06-21T19:00:00
Updated: 2017-06-22T09:57:01
Reserved: 2017-04-18T00:00:00
Link: CVE-2017-7918
JSON object: View
NVD Information
Status : Modified
Published: 2017-06-21T19:29:00.400
Modified: 2019-10-09T23:29:57.890
Link: CVE-2017-7918
JSON object: View
Redhat Information
No data.