CVE-2017-14331

EUVD-2017-5834
Extreme EXOS 16.x, 21.x, and 22.x allows administrators to bypass the "exsh restricted shell" protection mechanism and obtain an interactive shell.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.7 MEDIUM
LOCAL
LOW
HIGH
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 12%
Affected Products (NVD)
VendorProductVersion
extremenetworksextremexos
15.7
extremenetworksextremexos
16.1.2
extremenetworksextremexos
16.1.3
extremenetworksextremexos
16.1.4
extremenetworksextremexos
16.2
extremenetworksextremexos
16.2.2
extremenetworksextremexos
16.2.3
extremenetworksextremexos
16.2.4
extremenetworksextremexos
21.1
extremenetworksextremexos
21.1.1
extremenetworksextremexos
21.1.2
extremenetworksextremexos
21.1.3
extremenetworksextremexos
21.1.4
extremenetworksextremexos
22.1
extremenetworksextremexos
22.2
extremenetworksextremexos
22.3
extremenetworksextremexos
22.4
𝑥
= Vulnerable software versions
References
https://extremeportal.force.com/ExtrArticleDetail?n=000017719
https://extremeportal.force.com/ExtrArticleDetail?n=000017719