This page lists publicly disclosed CVE vulnerabilities affecting ucopia wireless_appliance_firmware (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2022-44720 | An issue was discovered in Weblib Ucopia before 6.0.13. OS Command Injection injection can occur, related to chroot. | [email protected] | 9.8 | 0.63% | 2023-06-29 | 2024-11-21 |
| CVE-2022-44719 | An issue was discovered in Weblib Ucopia before 6.0.13. The SSH Server has Insecure Permissions. | [email protected] | 7.5 | 0.05% | 2023-06-29 | 2024-11-21 |
| CVE-2018-15481 | Improper input sanitization within the restricted administration shell on UCOPIA Wireless Appliance devices using firmware version 5.1.x before 5.1.13 allows authenticated remote attackers to escape the shell and escalate their privileges by adding a LocalCommand to the SSH configuration file in the user home folder. | [email protected] | 8.8 | 0.72% | 2018-08-21 | 2024-11-21 |
| CVE-2017-17743 | Improper input sanitization within the restricted administration shell on UCOPIA Wireless Appliance devices before 4.4.20, 5.0.x before 5.0.19, and 5.1.x before 5.1.11 allows authenticated remote attackers to escape the shell and escalate their privileges by uploading a .bashrc file containing the /bin/sh string. In some situations, authentication can be achieved via the bhu85tgb default password for the admin account. | [email protected] | 6.7 | 0.36% | 2018-03-22 | 2024-11-21 |