cvedb.io
CVE-2018-11542
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2018-07-09T12:29:00.360 · Last modified 2026-06-17T01:36:08.043

Summary

A Remote Command Execution (RCE) vulnerability in the Sonus SBC 1000 / SBC 2000 / SBC SWe Lite web interface allows for the execution of arbitrary commands via an unspecified vector. It affects the 1000 and 2000 devices 6.0.x up to Build 446, 6.1.x up to Build 492, and 7.0.x up to Build 485. It affects the SWe Lite devices 6.1.x up to Build 111 and 7.0.x up to Build 140.

Affected products

ribboncommunications — sonus_sbc_1000_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when ribboncommunications ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.