CVE-2017-14329
MEDIUMExtremeXOS 16.x 21.x 22.x - Authenticated Privilege Escalation via exsh Debug Shell
Title source: llmDescription
Extreme EXOS 16.x, 21.x, and 22.x allows administrators to obtain a root shell via vectors involving an exsh debug shell.
References (1)
Core 1
Core References
Mitigation, Vendor Advisory x_refsource_confirm
https://extremeportal.force.com/ExtrArticleDetail?n=000017719
Scores
CVSS v3
6.7
EPSS
0.0032
EPSS Percentile
23.7%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-269
Status
published
Products (17)
extremenetworks/extremexos
15.7
extremenetworks/extremexos
16.1.2
extremenetworks/extremexos
16.1.3
extremenetworks/extremexos
16.1.4
extremenetworks/extremexos
16.2
extremenetworks/extremexos
16.2.2
extremenetworks/extremexos
16.2.3
extremenetworks/extremexos
16.2.4
extremenetworks/extremexos
21.1
extremenetworks/extremexos
21.1.1
... and 7 more
Published
Oct 23, 2017
Tracked Since
Feb 18, 2026