VYPR
Vendor

Cradlepoint

Products
4
CVEs
3
Across products
3
Status
Private

Products

4

Recent CVEs

3
  • CVE-2024-11969HigNov 28, 2024
    risk 0.57cvss 8.8epss 0.00

    The NetCloud Exchange client for Windows, version 1.110.50, contains an insecure file and folder permissions vulnerability. A normal (non-admin) user could exploit the weakness in file and folder permissions to escalate privileges, execute arbitrary code and maintain persistence…

  • CVE-2021-37471HigNov 7, 2021
    risk 0.49cvss 7.5epss 0.01

    Cradlepoint IBR900-600 devices running versions < 7.21.10 are vulnerable to a restricted shell escape sequence that provides an attacker the capability to simultaneously deny availability to the device's NetCloud Manager console, local console and SSH command-line.

  • CVE-2022-3086HigDec 2, 2022
    risk 0.46cvss 7.1epss 0.00

    Cradlepoint IBR600 NCOS versions 6.5.0.160bc2e and prior are vulnerable to shell escape, which enables local attackers with non-superuser credentials to gain full, unrestrictive shell access which may allow an attacker to execute arbitrary code.