CVE-2017-14331

Extreme EXOS 16.x, 21.x, and 22.x allows administrators to bypass the "exsh restricted shell" protection mechanism and obtain an interactive shell.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.7 MEDIUM
LOCAL
LOW
HIGH
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
extremenetworksextremexos
15.7
extremenetworksextremexos
16.1.2
extremenetworksextremexos
16.1.3
extremenetworksextremexos
16.1.4
extremenetworksextremexos
16.2
extremenetworksextremexos
16.2.2
extremenetworksextremexos
16.2.3
extremenetworksextremexos
16.2.4
extremenetworksextremexos
21.1
extremenetworksextremexos
21.1.1
extremenetworksextremexos
21.1.2
extremenetworksextremexos
21.1.3
extremenetworksextremexos
21.1.4
extremenetworksextremexos
22.1
extremenetworksextremexos
22.2
extremenetworksextremexos
22.3
extremenetworksextremexos
22.4
𝑥
= Vulnerable software versions
References
https://extremeportal.force.com/ExtrArticleDetail?n=000017719
https://extremeportal.force.com/ExtrArticleDetail?n=000017719