CVE-2021-37471 - Vulnerability Details - OpenCVE

Cradlepoint IBR900-600 devices running versions < 7.21.10 are vulnerable to a restricted shell escape sequence that provides an attacker the capability to simultaneously deny availability to the device's NetCloud Manager console, local console and SSH command-line.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Cradlepoint	Ibr600 Ibr600 Firmware Ibr600c Ibr600c Firmware Ibr900 Ibr900 Firmware

Configuration 1 [-]

AND

cpe:2.3:o:cradlepoint:ibr600c_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cradlepoint:ibr600c:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:cradlepoint:ibr600_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cradlepoint:ibr600:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:cradlepoint:ibr900_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cradlepoint:ibr900:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://cradlepoint.com/product/endpoints/ibr900/
https://securitybytes.me/posts/cve-2021-37471/

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2021-11-07T15:25:13

Updated: 2024-08-04T01:16:04.088Z

Reserved: 2021-07-25T00:00:00

Link: CVE-2021-37471

Vulnrichment

No data.

NVD

Status : Modified

Published: 2021-11-07T16:15:07.730

Modified: 2024-11-21T06:15:14.653

Link: CVE-2021-37471

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "Cradlepoint IBR900-600 devices running versions < 7.21.10 are vulnerable to a restricted shell escape sequence that provides an attacker the capability to simultaneously deny availability to the device's NetCloud Manager console, local console and SSH command-line."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2021-11-10T16:08:56", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://cradlepoint.com/product/endpoints/ibr900/"}, {"tags": ["x_refsource_MISC"], "url": "https://securitybytes.me/posts/cve-2021-37471/"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2021-37471", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Cradlepoint IBR900-600 devices running versions < 7.21.10 are vulnerable to a restricted shell escape sequence that provides an attacker the capability to simultaneously deny availability to the device's NetCloud Manager console, local console and SSH command-line."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://cradlepoint.com/product/endpoints/ibr900/", "refsource": "MISC", "url": "https://cradlepoint.com/product/endpoints/ibr900/"}, {"name": "https://securitybytes.me/posts/cve-2021-37471/", "refsource": "MISC", "url": "https://securitybytes.me/posts/cve-2021-37471/"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T01:16:04.088Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://cradlepoint.com/product/endpoints/ibr900/"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://securitybytes.me/posts/cve-2021-37471/"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2021-37471", "datePublished": "2021-11-07T15:25:13", "dateReserved": "2021-07-25T00:00:00", "dateUpdated": "2024-08-04T01:16:04.088Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:cradlepoint:ibr600c_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "61A8A6C2-5796-44DD-9456-D28F4814598F", "versionEndExcluding": "7.21.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:cradlepoint:ibr600c:-:*:*:*:*:*:*:*", "matchCriteriaId": "0D5995CF-8C6A-482F-8852-3DF0B3ACF7BA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:cradlepoint:ibr600_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "B2DC23E4-41AB-4982-8460-75E3683B3B94", "versionEndExcluding": "7.21.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:cradlepoint:ibr600:-:*:*:*:*:*:*:*", "matchCriteriaId": "D5ECA532-8368-43A9-A2D6-4B5C17BFDE5E", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:cradlepoint:ibr900_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "5D768371-4D77-4B06-958F-DBF9ECCC8506", "versionEndExcluding": "7.21.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:cradlepoint:ibr900:-:*:*:*:*:*:*:*", "matchCriteriaId": "3B73AF7B-6376-48DC-8722-571CEC7111AC", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "Cradlepoint IBR900-600 devices running versions < 7.21.10 are vulnerable to a restricted shell escape sequence that provides an attacker the capability to simultaneously deny availability to the device's NetCloud Manager console, local console and SSH command-line."}, {"lang": "es", "value": "Los dispositivos Cradlepoint IBR900-600 que ejecutan versiones anteriores a la versi\u00f3n 7.21.10 son vulnerables a una secuencia de escape de shell restringida que proporciona a un atacante la capacidad de denegar simult\u00e1neamente la disponibilidad de la consola de NetCloud Manager del dispositivo, la consola local y la l\u00ednea de comandos SSH"}], "id": "CVE-2021-37471", "lastModified": "2024-11-21T06:15:14.653", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2021-11-07T16:15:07.730", "references": [{"source": "cve@mitre.org", "tags": ["Product", "Vendor Advisory"], "url": "https://cradlepoint.com/product/endpoints/ibr900/"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory"], "url": "https://securitybytes.me/posts/cve-2021-37471/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Product", "Vendor Advisory"], "url": "https://cradlepoint.com/product/endpoints/ibr900/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Third Party Advisory"], "url": "https://securitybytes.me/posts/cve-2021-37471/"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}