CVE-2017-6079

{"id": "CVE-2017-6079", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": true, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2017-05-16T17:29:00.323", "references": [{"url": "https://depthsecurity.com/blog/cve-2017-6079-blind-command-injection-in-edgewater-edgemarc-devices", "tags": ["Exploit", "Technical Description", "Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://depthsecurity.com/blog/cve-2017-6079-blind-command-injection-in-edgewater-edgemarc-devices", "tags": ["Exploit", "Technical Description", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "The HTTP web-management application on Edgewater Networks Edgemarc appliances has a hidden page that allows for user-defined commands such as specific iptables routes, etc., to be set. You can use this page as a web shell essentially to execute commands, though you get no feedback client-side from the web application: if the command is valid, it executes. An example is the wget command. The page that allows this has been confirmed in firmware as old as 2006."}, {"lang": "es", "value": "La aplicaci\u00f3n de administraci\u00f3n web HTTP en dispositivos Edgewater Networks Edgemarc, tiene una p\u00e1gina oculta que permite establecer comandos definidos por el usuario, como rutas iptables espec\u00edficas, etc.. Pueden utilizar esta p\u00e1gina como un shell web esencialmente para ejecutar comandos, aunque no consigan retroalimentaci\u00f3n del lado del cliente de la aplicaci\u00f3n web: si el comando es v\u00e1lido, se ejecuta. Un ejemplo es el comando wget. La p\u00e1gina que permite esto se ha confirmado en un firmware tan antiguo como el 2006."}], "lastModified": "2024-11-21T03:29:03.170", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:ribboncommunications:edgemarc_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "82C4112D-48DA-4829-9B4B-E5FF8B9491A7"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:ribboncommunications:edgemarc_4550:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E720E7F6-0BDA-4C02-B69A-854C178C94A1"}, {"criteria": "cpe:2.3:h:ribboncommunications:edgemarc_4552:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9D25CA9B-8D0D-45A2-8D00-03E0F7E40519"}, {"criteria": "cpe:2.3:h:ribboncommunications:edgemarc_4601:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "13F142C5-A17E-4AB8-BFC3-5AE338E53D13"}, {"criteria": "cpe:2.3:h:ribboncommunications:edgemarc_4700:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F1C35E8B-21D7-4D84-9CE8-6E97FC0B5288"}, {"criteria": "cpe:2.3:h:ribboncommunications:edgemarc_4750:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A5132F55-CC24-4D3B-80B8-B52551AF0DBF"}, {"criteria": "cpe:2.3:h:ribboncommunications:edgemarc_4800:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "512891B5-D948-48E2-9C0F-1A77C71B8426"}, {"criteria": "cpe:2.3:h:ribboncommunications:edgemarc_4806:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4FD19254-9B77-453C-80EA-1A259D7BD036"}, {"criteria": "cpe:2.3:h:ribboncommunications:edgemarc_4808:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "11ECF931-E24D-4562-8186-1482C3A5A4D6"}, {"criteria": "cpe:2.3:h:ribboncommunications:edgemarc_7301:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "71932337-DE5A-4773-ACDB-A1A4766B2886"}, {"criteria": "cpe:2.3:h:ribboncommunications:edgemarc_7400:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3F81DF2A-8C5F-4FE2-82B3-D4809FACC4E6"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}