Unrated severityNVD Advisory· Published May 17, 2022· Updated Apr 16, 2025
Cambium Networks cnMaestro Path Traversal
CVE-2022-1359
Description
The affected On-Premise cnMaestro is vulnerable to an arbitrary file-write through improper limitation of a pathname to a restricted directory inside a specific route. If an attacker supplied path traversal charters (../) as part of a filename, the server will save the file where the attacker chooses. This could allow an attacker to write any data to any file in the server.
Affected products
2- Cambium Networks/cnMaestrov5Range: unspecified
Patches
Vulnerability mechanics
References
1- www.cisa.gov/uscert/ics/advisories/icsa-22-132-04mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.