CVE-2021-40857

HIGH

Auerswald COMpact 5500R <8.2B - Privilege Escalation

Title source: llm

Description

Auerswald COMpact 5500R devices before 8.2B allow Privilege Escalation via the passwd=1 substring.

References (3)

Scores

CVSS v3 8.8
EPSS 0.0139
EPSS Percentile 80.2%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Classification

CWE
CWE-522
Status published

Affected Products (10)

auerswald/compact_5500r_ip_firmware < 8.0b
auerswald/compact_5200r_ip_firmware < 8.0b
auerswald/compact_5000r_ip_firmware < 8.0b
auerswald/compact_4000_ip_firmware < 8.0b
auerswald/commander_6000r_ip_firmware < 8.0b
auerswald/commander_6000rx_ip_firmware < 8.0b
auerswald/commander_business\(19\"\)_ip_firmware < 8.0b
auerswald/commander_basic.2\(19\"\)_ip_firmware < 8.0b
auerswald/compact_5010_voip_ip_firmware < 8.0b
auerswald/compact_5020_voip_ip_firmware < 8.0b

Timeline

Published Dec 13, 2021
Tracked Since Feb 18, 2026