Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An authenticated attacker can enumerate and download sensitive files, including the eNodeB's web management UI's TLS private key, the web server binary, and the web server configuration file. These vulnerabilities were found in AirVelocity 1500 running software version 9.3.0.01249, were still present in 15.18.00.2511, and may affect other AirVelocity and AirSpeed models.
CVSS Information
N/A
Vulnerability Type
Web根目录下的敏感数据
Vulnerability Title
Airspan AirVelocity 1500 安全漏洞
Vulnerability Description
Airspan AirVelocity 1500是美国Airspan公司的一款革命性的室内高性能小型蜂窝。旨在将公共接入 LTE 网络带入室内空间 Airspan AirVelocity 1500 9.3.0.01249和15.18.00.2511版本存在安全漏洞,该漏洞源于经过身份验证的攻击者可以枚举并下载敏感文件,包括eNodeB的web管理界面的TLS私钥、web服务器二进制文件和web服务器配置文件。
CVSS Information
N/A
Vulnerability Type
N/A