8 matches found
CVE-2022-36306
An authenticated attacker can enumerate and download sensitive files, including the eNodeB's web management UI's TLS private key, the web server binary, and the web server configuration file. These vulnerabilities were found in AirVelocity 1500 running software version 9.3.0.01249, were still...
CVE-2022-36307
The AirVelocity 1500 prints SNMP credentials on its physically accessible serial port during boot. This was fixed in AirVelocity 1500 software version 15.18.00.2511 and may affect other AirVelocity and AirSpeed models...
CVE-2022-36306
An authenticated attacker can enumerate and download sensitive files, including the eNodeB's web management UI's TLS private key, the web server binary, and the web server configuration file. These vulnerabilities were found in AirVelocity 1500 running software version 9.3.0.01249, were still...
CVE-2022-36311
Airspan AirVelocity 1500 prior to software version 15.18.00.2511 is vulnerable to injection leading to XSS in the SNMP community field in the eNodeB's web management UI. This issue may affect other AirVelocity and AirSpeed models...
CVE-2022-36307
The AirVelocity 1500 prints SNMP credentials on its physically accessible serial port during boot. This was fixed in AirVelocity 1500 software version 15.18.00.2511 and may affect other AirVelocity and AirSpeed models...
Airspan AirVelocity 1500 跨站脚本漏洞
The Airspan AirVelocity 1500 is a revolutionary indoor high-performance small cell from Airspan USA. Designed to bring public access LTE networks into indoor spaces A security vulnerability exists in versions prior to Airspan AirVelocity 1500 15.18.00.2511, which stems from an easily injected XSS...
Airspan AirVelocity 1500 跨站请求伪造漏洞
The Airspan AirVelocity 1500 is a revolutionary indoor high-performance small cell from Airspan USA. Designed to bring public access LTE networks into indoor spaces A security vulnerability exists in versions prior to Airspan AirVelocity 1500 15.18.00.2511, which stems from the lack of CSRF...
PT-2022-23308 · Airspan · Airspan Airvelocity 1500
Name of the Vulnerable Software and Affected Versions: Airspan AirVelocity 1500 version 15.18.00.2511 Description: The issue is related to a lack of CSRF protections in the eNodeB's web management UI. This may potentially affect other AirVelocity and AirSpeed models. Recommendations: For Airspan...