漏洞描述
【漏洞对象】Cambium Networks ePMP 【涉及版本】<=3.5 【漏洞描述】攻击者可通过向‘get_chart’函数发送特制的POST请求利用该漏洞注入shell元字符,获取管理员的访问权限,控制设备和整个WiFi网络。
Cambium Networks ePMP-远程命令注入(CVE-2017-5255)
PoC代码
暂无相关漏洞推荐
- (CVE-2025-4617)Palo Alto Networks Prisma Browser截图控制绕过漏洞
- (CVE-2025-4618)Palo Alto Networks Prisma Browser敏感信息泄露漏洞
- CVE-2023-20888: VMware Aria Operations for Networks - Remote Code Execution
- POC CVE-2018-10141: Palo Alto Networks PAN-OS GlobalProtect <8.1.4 - Cross-Site Scripting
- POC CVE-2020-2036: Palo Alto Networks PAN-OS Web Interface - Cross Site-Scripting
- POC CVE-2023-20888: VMware Aria Operations for Networks - Remote Code Execution
- POC CVE-2023-20889: VMware Aria Operations for Networks - Code Injection Information Disclosure Vulnerability
- POC CVE-2024-9463: PaloAlto Networks Expedition - Remote Code Execution
- POC CVE-2025-0107: Palo Alto Networks Expedition - OS Command Injection
- POC limit-networkaccess-disabled: Limit Network Access to Selected Networks - Disabled
- POC CVE-2022-22242: Juniper Networks Junos OS 错误页面反射 XSS 漏洞
- POC CVE-2024-0012: Palo Alto Networks PAN-OS身份认证绕过导致RCE漏洞(CVE-2024-0012)
- POC versa-default-password: Versa Networks SD-WAN Application Default Login