Sign-up

ID

VAR-201706-0663


CVE

CVE-2017-7918


TITLE

Cambium Networks ePMP Access Control Error Vulnerability

Trust: 1.4

sources: IVD: 8d7f7ade-bec5-43c4-9e06-76b64bf6626d // CNVD: CNVD-2017-14370 // CNNVD: CNNVD-201704-1052

DESCRIPTION

An Improper Access Control issue was discovered in Cambium Networks ePMP. After a valid user has used SNMP configuration export, an attacker is able to remotely trigger device configuration backups using specific MIBs. These backups lack proper access control and may allow access to sensitive information and possibly allow for configuration changes. The platform provides features such as video surveillance, Wi-Fi hotspots and sensor connectivity. Exploiting these issues will allow attackers to bypass certain security restrictions and gain elevated privileges. Other attacks are also possible

Trust: 2.7

sources: NVD: CVE-2017-7918 // JVNDB: JVNDB-2017-005034 // CNVD: CNVD-2017-14370 // BID: 99083 // IVD: 8d7f7ade-bec5-43c4-9e06-76b64bf6626d // VULHUB: VHN-116121

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.8

sources: IVD: 8d7f7ade-bec5-43c4-9e06-76b64bf6626d // CNVD: CNVD-2017-14370

AFFECTED PRODUCTS

vendor:cambiummodel:epmp 1000 hotspotscope:eqversion: -

Trust: 1.6

vendor:cambiummodel:epmp elevatescope:eqversion: -

Trust: 1.6

vendor:cambiummodel:epmp 1000scope:eqversion: -

Trust: 1.6

vendor:cambiummodel:epmp 2000scope:eqversion: -

Trust: 1.6

vendor:cambiummodel:epmp 1000 hotspotscope: - version: -

Trust: 0.8

vendor:cambiummodel:epmp 1000scope: - version: -

Trust: 0.8

vendor:cambiummodel:epmp 2000scope: - version: -

Trust: 0.8

vendor:cambiummodel:epmp elevatescope: - version: -

Trust: 0.8

vendor:cambiummodel:networks epmpscope:eqversion:1000

Trust: 0.6

vendor:cambiummodel:networks epmpscope:eqversion:0

Trust: 0.3

vendor:epmp 1000model: - scope:eqversion: -

Trust: 0.2

vendor:epmp elevatemodel: - scope:eqversion: -

Trust: 0.2

vendor:epmp 2000model: - scope:eqversion: -

Trust: 0.2

vendor:epmp 1000 hotspotmodel: - scope:eqversion: -

Trust: 0.2

sources: IVD: 8d7f7ade-bec5-43c4-9e06-76b64bf6626d // CNVD: CNVD-2017-14370 // BID: 99083 // JVNDB: JVNDB-2017-005034 // CNNVD: CNNVD-201704-1052 // NVD: CVE-2017-7918

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2017-7918
value: MEDIUM

Trust: 1.0

NVD: CVE-2017-7918
value: MEDIUM

Trust: 0.8

CNVD: CNVD-2017-14370
value: MEDIUM

Trust: 0.6

CNNVD: CNNVD-201704-1052
value: MEDIUM

Trust: 0.6

IVD: 8d7f7ade-bec5-43c4-9e06-76b64bf6626d
value: MEDIUM

Trust: 0.2

VULHUB: VHN-116121
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2017-7918
severity: MEDIUM
baseScore: 6.0
vectorString: AV:N/AC:M/AU:S/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 6.8
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2017-14370
severity: MEDIUM
baseScore: 6.0
vectorString: AV:N/AC:M/AU:S/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 6.8
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

IVD: 8d7f7ade-bec5-43c4-9e06-76b64bf6626d
severity: MEDIUM
baseScore: 6.0
vectorString: AV:N/AC:M/AU:S/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 6.8
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

VULHUB: VHN-116121
severity: MEDIUM
baseScore: 6.0
vectorString: AV:N/AC:M/AU:S/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 6.8
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2017-7918
baseSeverity: MEDIUM
baseScore: 6.8
vectorString: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:L
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: REQUIRED
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: LOW
availabilityImpact: LOW
exploitabilityScore: 2.1
impactScore: 4.7
version: 3.0

Trust: 1.8

sources: IVD: 8d7f7ade-bec5-43c4-9e06-76b64bf6626d // CNVD: CNVD-2017-14370 // VULHUB: VHN-116121 // JVNDB: JVNDB-2017-005034 // CNNVD: CNNVD-201704-1052 // NVD: CVE-2017-7918

PROBLEMTYPE DATA

problemtype:CWE-284

Trust: 1.9

problemtype:CWE-269

Trust: 1.1

sources: VULHUB: VHN-116121 // JVNDB: JVNDB-2017-005034 // NVD: CVE-2017-7918

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201704-1052

TYPE

Access control error

Trust: 0.8

sources: IVD: 8d7f7ade-bec5-43c4-9e06-76b64bf6626d // CNNVD: CNNVD-201704-1052

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2017-005034

PATCH
title:Top Pageurl:http://www.cambiumnetworks.com/
Trust: 0.8
title:Cambium Networks ePMP Access Control Error Vulnerability Patchurl:https://www.cnvd.org.cn/patchInfo/show/98071
Trust: 0.6
title:Cambium Networks ePMP Fixes for access control error vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=100394
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2017-14370 // 
            
            
            
            JVNDB: JVNDB-2017-005034 // 
            
            
            
            CNNVD: CNNVD-201704-1052

EXTERNAL IDS
db:NVDid:CVE-2017-7918
Trust: 3.6
db:ICS CERTid:ICSA-17-166-01
Trust: 2.8
db:BIDid:99083
Trust: 2.6
db:CNVDid:CNVD-2017-14370
Trust: 0.8
db:CNNVDid:CNNVD-201704-1052
Trust: 0.8
db:JVNDBid:JVNDB-2017-005034
Trust: 0.8
db:IVDid:8D7F7ADE-BEC5-43C4-9E06-76B64BF6626D
Trust: 0.2
db:VULHUBid:VHN-116121
Trust: 0.1
sources:
            
            
            IVD: 8d7f7ade-bec5-43c4-9e06-76b64bf6626d // 
            
            
            
            CNVD: CNVD-2017-14370 // 
            
            
            
            VULHUB: VHN-116121 // 
            
            
            
            BID: 99083 // 
            
            
            
            JVNDB: JVNDB-2017-005034 // 
            
            
            
            CNNVD: CNNVD-201704-1052 // 
            
            
            
            NVD: CVE-2017-7918

REFERENCES
url:https://ics-cert.us-cert.gov/advisories/icsa-17-166-01
Trust: 2.8
url:http://www.securityfocus.com/bid/99083
Trust: 2.3
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-7918
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2017-7918
Trust: 0.8
url:http://www.cambiumnetworks.com/products/access/epmp-1000/
Trust: 0.3
sources:
            
            
            CNVD: CNVD-2017-14370 // 
            
            
            
            VULHUB: VHN-116121 // 
            
            
            
            BID: 99083 // 
            
            
            
            JVNDB: JVNDB-2017-005034 // 
            
            
            
            CNNVD: CNNVD-201704-1052 // 
            
            
            
            NVD: CVE-2017-7918

CREDITS
Karn Ganeshen
Trust: 0.3
sources:
            
            
            BID: 99083

SOURCES
db:IVDid:8d7f7ade-bec5-43c4-9e06-76b64bf6626d
db:CNVDid:CNVD-2017-14370
db:VULHUBid:VHN-116121
db:BIDid:99083
db:JVNDBid:JVNDB-2017-005034
db:CNNVDid:CNNVD-201704-1052
db:NVDid:CVE-2017-7918

LAST UPDATE DATE
2025-04-20T23:16:06.833000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2017-14370date:2017-07-13T00:00:00
db:VULHUBid:VHN-116121date:2019-10-09T00:00:00
db:BIDid:99083date:2017-06-14T00:00:00
db:JVNDBid:JVNDB-2017-005034date:2017-07-13T00:00:00
db:CNNVDid:CNNVD-201704-1052date:2019-10-17T00:00:00
db:NVDid:CVE-2017-7918date:2025-04-20T01:37:25.860

SOURCES RELEASE DATE
db:IVDid:8d7f7ade-bec5-43c4-9e06-76b64bf6626ddate:2017-07-13T00:00:00
db:CNVDid:CNVD-2017-14370date:2017-07-13T00:00:00
db:VULHUBid:VHN-116121date:2017-06-21T00:00:00
db:BIDid:99083date:2017-06-14T00:00:00
db:JVNDBid:JVNDB-2017-005034date:2017-07-13T00:00:00
db:CNNVDid:CNNVD-201704-1052date:2017-04-21T00:00:00
db:NVDid:CVE-2017-7918date:2017-06-21T19:29:00.400