Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2022-36267

🗓️ 08 Aug 2022 14:34:15Reported by mitreType 
cve
 cve🔗 web.nvd.nist.gov📰️ 11 Media mentions👁 208 Views🌐 WEB

Airspan AirSpot 5410 v0.3.4.1-4 Unauthenticated Remote Command Injectio

Related
Detection
Refs
Paths
Social
ReporterTitlePublishedViews
Family
GithubExploit		Exploit for CVE-2022-36267
8 Jan 202422:23
githubexploit
0day.today		AirSpot 5410 0.3.4.1-4 Remote Command Injection Exploit
10 Aug 202200:00
zdt
ATTACKERKB		CVE-2022-36267
8 Aug 202215:15
attackerkb
Circl		CVE-2022-36267
8 Aug 202218:23
circl
CNNVD		Airspan AirSpot 5410 安全漏洞
8 Aug 202200:00
cnnvd
Check Point Advisories		Airspan AirSpot 5410 Command Injection (CVE-2022-36267)
23 Nov 202200:00
checkpoint_advisories
Cvelist		CVE-2022-36267
8 Aug 202214:34
cvelist
Exploit DB		Airspan AirSpot 5410 version 0.3.4.1 - Remote Code Execution (RCE)
20 Sep 202200:00
exploitdb
NVD		CVE-2022-36267
8 Aug 202215:15
nvd
OSV		CVE-2022-36267
8 Aug 202215:15
osv
Rows per page
NVD
Node
airspanairspot_5410_firmwareRange0.3.4.1-4
AND
airspanairspot_5410Match-
ParameterPositionPathDescriptionCWE
Commandrequest bodycgi-bin/diagnostics.cgiUnauthenticated remote command injection via diagnostics.cgi accepting unsanitized data in POST body (CVE-2022-36267).CWE-77
targetIPrequest bodycgi-bin/diagnostics.cgiUnauthenticated remote command injection via diagnostics.cgi accepting unsanitized data in POST body (CVE-2022-36267).CWE-77
packetSizerequest bodycgi-bin/diagnostics.cgiUnauthenticated remote command injection via diagnostics.cgi accepting unsanitized data in POST body (CVE-2022-36267).CWE-77
timeOutrequest bodycgi-bin/diagnostics.cgiUnauthenticated remote command injection via diagnostics.cgi accepting unsanitized data in POST body (CVE-2022-36267).CWE-77
countrequest bodycgi-bin/diagnostics.cgiUnauthenticated remote command injection via diagnostics.cgi accepting unsanitized data in POST body (CVE-2022-36267).CWE-77
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
21 Nov 2024 07:12Current
10High risk
Vulners AI Score10
CVSS 3.19.8
EPSS0.7023
In Wild
cve-2022-36267airspanairspot 5410remote command injectionunauthenticatedvulnerabilitynvd
208