Vulnerability Description
In version 3.5 and prior of Cambium Networks ePMP firmware, all authenticated users have the ability to update the Device Name and System Description fields in the web administration console, and those fields are vulnerable to persistent cross-site scripting (XSS) injection.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cambiumnetworks | Epmp 1000 Firmware | <= 3.5 |
| Cambiumnetworks | Epmp 1000 | - |
| Cambiumnetworks | Epmp 2000 Firmware | <= 3.5 |
| Cambiumnetworks | Epmp 2000 | - |
Related Weaknesses (CWE)
References
- https://blog.rapid7.com/2017/12/19/r7-2017-25-cambium-epmp-and-cnpilot-multiple-Third Party Advisory
- https://blog.rapid7.com/2017/12/19/r7-2017-25-cambium-epmp-and-cnpilot-multiple-Third Party Advisory
FAQ
What is CVE-2017-5256?
CVE-2017-5256 is a vulnerability with a CVSS score of 5.4 (MEDIUM). In version 3.5 and prior of Cambium Networks ePMP firmware, all authenticated users have the ability to update the Device Name and System Description fields in the web administration console, and thos...
How severe is CVE-2017-5256?
CVE-2017-5256 has been rated MEDIUM with a CVSS base score of 5.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-5256?
Check the references section above for vendor advisories and patch information. Affected products include: Cambiumnetworks Epmp 1000 Firmware, Cambiumnetworks Epmp 1000, Cambiumnetworks Epmp 2000 Firmware, Cambiumnetworks Epmp 2000.