Vulnerabilities > Cambiumnetworks > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-18 | CVE-2023-6691 | Code Injection vulnerability in Cambiumnetworks Epmp Force 300-25 Firmware 4.7.0.1 Cambium ePMP Force 300-25 version 4.7.0.1 is vulnerable to a code injection vulnerability that could allow an attacker to perform remote code execution and gain root privileges. | 7.8 |
| 2023-09-29 | CVE-2022-35908 | Unspecified vulnerability in Cambiumnetworks Enterprise Wi-Fi Cambium Enterprise Wi-Fi System Software before 6.4.2 does not sanitize the ping host argument in device-agent. | 8.8 |
| 2022-05-17 | CVE-2022-1356 | OS Command Injection vulnerability in Cambiumnetworks Cnmaestro 2.4.2/3.0.0/3.0.3 cnMaestro is vulnerable to a local privilege escalation. | 7.2 |
| 2022-05-17 | CVE-2022-1357 | OS Command Injection vulnerability in Cambiumnetworks Cnmaestro 2.4.2/3.0.0/3.0.3 The affected On-Premise cnMaestro allows an unauthenticated attacker to access the cnMaestro server and execute arbitrary code in the privileges of the web server. | 7.5 |
| 2022-05-17 | CVE-2022-1360 | OS Command Injection vulnerability in Cambiumnetworks Cnmaestro 2.4.2/3.0.0/3.0.3 The affected On-Premise cnMaestro is vulnerable to execution of code on the cnMaestro hosting server. | 7.5 |
| 2017-12-20 | CVE-2017-5262 | Information Exposure vulnerability in Cambiumnetworks products In versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware, the SNMP read-only (RO) community string has access to sensitive information by OID reference. | 7.7 |