VYPR
Medium severity5.4NVD Advisory· Published Dec 20, 2017· Updated Jun 17, 2026

CVE-2017-5257

CVE-2017-5257

Description

In version 3.5 and prior of Cambium Networks ePMP firmware, an attacker who knows (or guesses) the SNMP read/write (RW) community string can insert XSS strings in certain SNMP OIDs which will execute in the context of the currently-logged on user.

Affected products

4

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.