Web Vulnerability Report
| ID | EDB-ID-50469 |
| CVSS 3.0 | 8.8 |
|
Cloudbric Score
?
|
Medium |
| Cloudbric Detection | Yes |
| Vulnerability Type | Privilege Escalation |
| Published Date | 2021-11-02 |
| Updated Date | 2022-01-14 |
| Vendor | GMPC21 |
| Description | This module exploits privilege escalation vulnerability in Ericsson Network Location Mobile Positioning Systems. It creates a new admin user with SQL Query. Thanks to the Meow variant, it does this with the PostgreSQL password it stole. Therefore low authority user can gain the authority of "admin" on the application. You can examine the exploit "Restrictions Bypass RCE", which is the main source of the vulnerability. |
| Reference | https://nvd.nist.gov/vuln/detail/CVE-2021-43339 |
| URL Link | https://www.exploit-db.com/exploits/50469/ |
This vulnerability has been detected by Cloudbric!
Block NOW!
| ID | Description | Vulnerability Type |
Cloudbric Score
?
|
Updated Date | Detection |
|---|
To receive weekly updates on new vulnerabilities added to Threat Index
Subscribe Now