4 matches found
Command injection
Airspan AirVelocity 1500 software versions prior to 15.18.00.2511 have a root command injection vulnerability in the ActiveBank parameter of the recoverySubmit.cgi script running on the eNodeB's web management UI. This issue may affect other AirVelocity and AirSpeed models...
CVE-2022-36309
Airspan AirVelocity 1500 software versions prior to 15.18.00.2511 have a root command injection vulnerability in the ActiveBank parameter of the recoverySubmit.cgi script running on the eNodeB's web management UI. This issue may affect other AirVelocity and AirSpeed models...
CVE-2022-36309
CVE-2022-36309 affects Airspan AirVelocity 1500 (and possibly AirSpeed models) with versions prior to 15.18.00.2511. The vuln is a root command injection in the ActiveBank parameter of recoverySubmit.cgi running on the eNodeB web management UI. Impact is associated with potential full compromise ...
PT-2022-23304 · Airspan · Airspan Airvelocity 1500
Name of the Vulnerable Software and Affected Versions: Airspan AirVelocity 1500 versions prior to 15.18.00.2511 Description: The issue is related to a root command injection vulnerability in the ActiveBank parameter of the recoverySubmit.cgi script, which runs on the eNodeB's web management UI...