cbcvebase.

Ucopia Wireless Appliance Firmware vulnerabilities

4 known vulnerabilities affecting ucopia/wireless_appliance_firmware.

Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH2MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2022-44720P2CRITICALCVSS 9.8fixed in 6.0.132023-06-29
CVE-2022-44720 [CRITICAL] CWE-78 CVE-2022-44720: An issue was discovered in Weblib Ucopia before 6.0.13. OS Command Injection injection can occur, re An issue was discovered in Weblib Ucopia before 6.0.13. OS Command Injection injection can occur, related to chroot.
nvd
CVE-2018-15481P3HIGHCVSS 8.8≥ 5.1.0, ≤ 5.1.132018-08-21
CVE-2018-15481 [HIGH] CWE-78 CVE-2018-15481: Improper input sanitization within the restricted administration shell on UCOPIA Wireless Appliance Improper input sanitization within the restricted administration shell on UCOPIA Wireless Appliance devices using firmware version 5.1.x before 5.1.13 allows authenticated remote attackers to escape the shell and escalate their privileges by adding a LocalCommand to the SSH configuration file in the user home folder.
nvd
CVE-2022-44719P3HIGHCVSS 7.5fixed in 6.0.132023-06-29
CVE-2022-44719 [HIGH] CWE-732 CVE-2022-44719: An issue was discovered in Weblib Ucopia before 6.0.13. The SSH Server has Insecure Permissions. An issue was discovered in Weblib Ucopia before 6.0.13. The SSH Server has Insecure Permissions.
nvd
CVE-2017-17743P4MEDIUMCVSS 6.7fixed in 4.4.20≥ 5.0, < 5.0.19+1 more2018-03-22
CVE-2017-17743 [MEDIUM] CWE-287 CVE-2017-17743: Improper input sanitization within the restricted administration shell on UCOPIA Wireless Appliance Improper input sanitization within the restricted administration shell on UCOPIA Wireless Appliance devices before 4.4.20, 5.0.x before 5.0.19, and 5.1.x before 5.1.11 allows authenticated remote attackers to escape the shell and escalate their privileges by uploading a .bashrc file containing the /bin/sh string. In some situations, authentication ca
nvd
Ucopia Wireless Appliance Firmware vulnerabilities | cvebase