CVE-2022-1356
CWE-676: USE OF POTENTIALLY DANGEROUS FUNCTION
The affected product is vulnerable to a local privilege escalation. By default, a user does not have root privileges. However, a user can run scripts as sudo, which could allow an attacker to gain root privileges when running user scripts outside allowed commands.
Risk Information
- CVE ID
- CVE-2022-1356
- Vendor
- Cambium Networks
- Product
- cnMaestro
- CVSS v3
- 7.1