Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Airspan AirVelocity 1500 web management UI displays SNMP credentials in plaintext on software versions older than 15.18.00.2511, and stores SNMPv3 credentials unhashed on the filesystem, enabling anyone with web access to use these credentials to manipulate the eNodeB over SNMP. This issue may affect other AirVelocity and AirSpeed models.
CVSS Information
N/A
Vulnerability Type
明文存储口令
Vulnerability Title
Airspan AirVelocity 1500 安全漏洞
Vulnerability Description
Airspan AirVelocity 1500是美国Airspan公司的一款革命性的室内高性能小型蜂窝。旨在将公共接入 LTE 网络带入室内空间 Airspan AirVelocity 1500 15.18.00.2511之前的版本存在安全漏洞,该漏洞源于其web管理UI界面以纯文本显示SNMP凭证,并在文件系统上存储未加密的SNMPv3凭证,使任何具有web访问权限的人都可以使用这些凭证通过SNMP操纵eNodeB。
CVSS Information
N/A
Vulnerability Type
N/A