An improper access control flaw in the CelloOS SSH service allows authenticated attackers to escape restricted command shells and execute arbitrary operating system commands.

The SSH service fails to properly enforce command restrictions, allowing an authenticated remote attacker to bypass intended limitations and execute arbitrary commands outside the authorized scope.

Successful exploitation allows an authenticated attacker to gain unauthorized control over the underlying operating system. With a CVSS score of 8.8, this vulnerability poses a significant risk to the confidentiality and integrity of the affected appliance, potentially leading to total system takeover.

Immediate Action: Contact Cellopoint support or check the official vendor portal for available security patches or configuration guidance.

Proactive Monitoring: Audit SSH command history logs for commands that deviate from authorized baseline usage patterns.

Compensating Controls: Restrict SSH access to known, trusted IP addresses and enforce the principle of least privilege for all user accounts accessing the service.

Public Exploit Available: False

Organizations using CelloOS should prioritize reviewing their SSH access policies and applying any relevant updates provided by Cellopoint. Until a patch is applied, ensure that only highly trusted users have SSH access to the system.