CVE-2022-3086
published 2022-12-02CVE-2022-3086: Cradlepoint IBR600 NCOS versions 6.5.0.160bc2e and prior are vulnerable to shell escape, which enables local attackers with non-superuser credentials to gain…
high7.6CVSS 3.1
AVPACLPRNUINSCCHIHAH
Cradlepoint IBR600 NCOS versions 6.5.0.160bc2e and prior are vulnerable
to shell escape, which enables local attackers with non-superuser
credentials to gain full, unrestrictive shell access which may allow an
attacker to execute arbitrary code.
Affected
56 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cradlepoint | ibr600 | <= 6.5.0.160bc2e | — |
| moxa | uc-2101-lx_firmware | 1.3 – 1.5 | — |
| moxa | uc-2102-lx_firmware | 1.3 – 1.5 | — |
| moxa | uc-2104-lx_firmware | 1.3 – 1.5 | — |
| moxa | uc-2111-lx_firmware | 1.3 – 1.5 | — |
| moxa | uc-2112-lx_firmware | 1.3 – 1.5 | — |
| moxa | uc-2114-t-lx_firmware | 1.3 – 1.5 | — |
| moxa | uc-2116-t-lx_firmware | 1.3 – 1.5 | — |
| moxa | uc-3101-t-ap-lx_firmware | 1.2 – 2.0 | — |
| moxa | uc-3101-t-eu-lx_firmware | 1.2 – 2.0 | — |
| moxa | uc-3101-t-us-lx_firmware | 1.2 – 2.0 | — |
| moxa | uc-3111-t-ap-lx-nw_firmware | 1.2 – 2.0 | — |
| moxa | uc-3111-t-ap-lx_firmware | 1.2 – 2.0 | — |
| moxa | uc-3111-t-eu-lx-nw_firmware | 1.2 – 2.0 | — |
| moxa | uc-3111-t-eu-lx_firmware | 1.2 – 2.0 | — |
| moxa | uc-3111-t-us-lx-nw_firmware | 1.2 – 2.0 | — |
| moxa | uc-3111-t-us-lx_firmware | 1.2 – 2.0 | — |
| moxa | uc-3121-t-ap-lx_firmware | 1.2 – 2.0 | — |
| moxa | uc-3121-t-eu-lx_firmware | 1.2 – 2.0 | — |
| moxa | uc-3121-t-us-lx_firmware | 1.2 – 2.0 | — |
| moxa | uc-5101-lx_firmware | — | — |
| moxa | uc-5101-t-lx_firmware | — | — |
| moxa | uc-5102-lx_firmware | — | — |
| moxa | uc-5102-t-lx_firmware | — | — |
| moxa | uc-5111-lx_firmware | — | — |