CVE-2017-5258

Name of the Vulnerable Software and Affected Versions Cambium Networks ePMP firmware versions prior to 3.5

Description The issue allows an attacker who knows or can guess the RW community string to provide a URL for a configuration file over SNMP with XSS strings in certain SNMP OIDs. The attacker can serve this file via HTTP, and the affected device will perform a configuration restore using the attacker's supplied config file, including the inserted XSS strings.

Recommendations For versions prior to 3.5, update to version 3.5 or later to resolve the issue. As a temporary workaround, consider restricting access to SNMP and limiting the use of the RW community string until a patch is available. Avoid using potentially malicious configuration files from untrusted sources.