CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-1357

The affected On-Premise cnMaestro allows an unauthenticated attacker to access the cnMaestro server and execute arbitrary code in the privileges of the web server. This lack of validation could allow an attacker to append arbitrary data to the logger command.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.018

EPSS Ranking 81.8%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

https://www.cisa.gov/uscert/ics/advisories/icsa-22-132-04
https://www.cisa.gov/uscert/ics/advisories/icsa-22-132-04

Products affected by CVE-2022-1357

Cambiumnetworks » Cnmaestro » Version: 2.4.2

cpe:2.3:o:cambiumnetworks:cnmaestro:2.4.2
Cambiumnetworks » Cnmaestro » Version: 3.0.0

cpe:2.3:o:cambiumnetworks:cnmaestro:3.0.0
Cambiumnetworks » Cnmaestro » Version: 3.0.3

cpe:2.3:o:cambiumnetworks:cnmaestro:3.0.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-1357

Products

Pricing

Contact Us