CVE-2017-5254
N/A
N/A
Summary
In version 3.5 and prior of Cambium Networks ePMP firmware, the non-administrative users 'installer' and 'home' have the capability of changing passwords for other accounts, including admin, after disabling a client-side protection mechanism.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Cambium Networks | ePMP | 3.5 and prior | affected |
Weaknesses
- CWE-284: CWE-284 (Improper Access Control)
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.