Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In version 3.5 and prior of Cambium Networks ePMP firmware, an attacker who knows (or guesses) the SNMP read/write (RW) community string can insert XSS strings in certain SNMP OIDs which will execute in the context of the currently-logged on user.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Cambium Networks ePMP 安全漏洞
Vulnerability Description
Cambium Networks ePMP是美国Cambium Networks公司的一套无线网络接入平台。该平台提供视频监控、Wi-Fi热点和传感器连接等功能。 使用3.5及之前版本固件的Cambium Networks ePMP存在安全漏洞,该漏洞源于程序没有过滤用户提交的输入。攻击者可利用该漏洞获取用户浏览器会话的访问权限,控制设备和整个WiFi网络。
CVSS Information
N/A
Vulnerability Type
N/A