CVE-2017-7918

medium

Description

An Improper Access Control issue was discovered in Cambium Networks ePMP. After a valid user has used SNMP configuration export, an attacker is able to remotely trigger device configuration backups using specific MIBs. These backups lack proper access control and may allow access to sensitive information and possibly allow for configuration changes.

References

Advisories

https://ics-cert.us-cert.gov/advisories/ICSA-17-166-01

http://www.securityfocus.com/bid/99083

Details

Source: Mitre, NVD

Published: 2017-06-21

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 6

Vector: CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 6.8

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:L

Severity: Medium

EPSS

EPSS: 0.06653