Vulnerability Details CVE-2023-1097
Baicells EG7035-M11 devices with firmware through BCE-ODU-1.0.8 are vulnerable to improper code exploitation via HTTP GET command injections. Commands are executed using pre-login execution and executed with root permissions. The following methods have been tested and validated by a 3rd party analyst and have been confirmed exploitable special thanks to Lionel Musonza for the discovery.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.2%
CVSS Severity
CVSS v3 Score 9.3
References
- https://community.na.baicells.com/t/baice-bm-2-5-26-new-cpe-software-has-been-released/1756
- https://img.baicells.com//Upload/20220524/FILE/BaiCE_BM_2.5.26_NA.bin.bin
- https://community.na.baicells.com/t/baice-bm-2-5-26-new-cpe-software-has-been-released/1756
- https://img.baicells.com//Upload/20220524/FILE/BaiCE_BM_2.5.26_NA.bin.bin
Products affected by CVE-2023-1097
-
cpe:2.3:h:baicells:eg7035-m11:-
-
cpe:2.3:o:baicells:eg7035-m11_firmware:-
-
cpe:2.3:o:baicells:eg7035-m11_firmware:bce-odu-1.0.8