CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-37471

Cradlepoint IBR900-600 devices running versions < 7.21.10 are vulnerable to a restricted shell escape sequence that provides an attacker the capability to simultaneously deny availability to the device's NetCloud Manager console, local console and SSH command-line.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 57.9%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 7.8

References

https://cradlepoint.com/product/endpoints/ibr900/
https://securitybytes.me/posts/cve-2021-37471/
https://cradlepoint.com/product/endpoints/ibr900/
https://securitybytes.me/posts/cve-2021-37471/

Products affected by CVE-2021-37471

Cradlepoint » Ibr600 » Version: N/A

cpe:2.3:h:cradlepoint:ibr600:-
Cradlepoint » Ibr600c » Version: N/A

cpe:2.3:h:cradlepoint:ibr600c:-
Cradlepoint » Ibr900 » Version: N/A

cpe:2.3:h:cradlepoint:ibr900:-
Cradlepoint » Ibr600 Firmware » Version: Any

cpe:2.3:o:cradlepoint:ibr600_firmware:*
Cradlepoint » Ibr600c Firmware » Version: Any

cpe:2.3:o:cradlepoint:ibr600c_firmware:*
Cradlepoint » Ibr900 Firmware » Version: Any

cpe:2.3:o:cradlepoint:ibr900_firmware:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-37471

Products

Pricing

Contact Us