Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware, an undocumented, root-privilege administration web shell is available using the HTTP path https://<device-ip-or-hostname>/adm/syscmd.asp.
CVSS Information
N/A
Vulnerability Type
遗留的调试代码
Vulnerability Title
Cambium Networks cnPilot 安全漏洞
Vulnerability Description
Cambium Networks cnPilot是美国Cambium Networks公司的一款支持云管理单频路由器产品。 使用4.3.2-R4及之前版本固件的Cambium Networks cnPilot存在安全漏洞。攻击者可通过使用https://<device>/adm/syscmd.asp HTTP路径利用该漏洞访问Web shell。
CVSS Information
N/A
Vulnerability Type
N/A