Medium severity6.7NVD Advisory· Published Mar 22, 2018· Updated Jun 17, 2026
CVE-2017-17743
CVE-2017-17743
Description
Improper input sanitization within the restricted administration shell on UCOPIA Wireless Appliance devices before 4.4.20, 5.0.x before 5.0.19, and 5.1.x before 5.1.11 allows authenticated remote attackers to escape the shell and escalate their privileges by uploading a .bashrc file containing the /bin/sh string. In some situations, authentication can be achieved via the bhu85tgb default password for the admin account.
Affected products
1- Range: <4.4.20, <5.0.19, <5.1.11
Patches
Vulnerability mechanics
References
1- securite.intrinsec.com/2018/03/19/cve-2017-17743-ucopia-shell-escape/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.