Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware, the 'ping' and 'traceroute' functions of the web administrative console expose a file path traversal vulnerability, accessible to all authenticated users.
CVSS Information
N/A
Vulnerability Type
对假设不可变Web参数的外部可控制
Vulnerability Title
Cambium Networks cnPilot Web administrative console 路径遍历漏洞
Vulnerability Description
Cambium Networks cnPilot是美国Cambium Networks公司的一款支持云管理单频路由器产品。Web administrative console是其中的一个Web管理控制台程序。 使用4.3.2-R4及之前版本固件的Cambium Networks cnPilot中的Web administrative console的‘ping’和‘traceroute’函数存在路径遍历漏洞,该漏洞源于程序没有过滤用户提交的输入。攻击者可利用该漏洞获取管理员密码的访问权限,进而控制设备的整
CVSS Information
N/A
Vulnerability Type
N/A