Unrated severityNVD Advisory· Published Aug 16, 2022· Updated Aug 3, 2024
CVE-2022-36310
CVE-2022-36310
Description
Airspan AirVelocity 1500 software prior to version 15.18.00.2511 had NET-SNMP-EXTEND-MIB enabled on its snmpd service, enabling an attacker with SNMP write abilities to execute commands as root on the eNodeB. This issue may affect other AirVelocity and AirSpeed models.
Affected products
2- Range: <15.18.00.2511
- Airspan/AirVelocityv5Range: unspecified
Patches
Vulnerability mechanics
References
2- github.com/metaredteam/external-disclosures/security/advisories/GHSA-whc6-2989-42xmmitrex_refsource_MISC
- helpdesk.airspan.com/browse/TRN3-1689mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.