MMP: All versions prior to v1.0.3, PTP C-series: Device versions prior to v2.8.6.1, and PTMP C-series and A5x: Device versions prior to v2.5.4.1 does not perform proper authorization and authentication checks on multiple API routes. An attacker may gain access to these API routes and achieve remote code execution, create a denial-of-service condition, and obtain sensitive information.
References
Link | Resource |
---|---|
https://www.cisa.gov/uscert/ics/advisories/icsa-22-034-02 | Third Party Advisory US Government Resource |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
History
24 Jul 2023, 13:50
Type | Values Removed | Values Added |
---|---|---|
CWE | NVD-CWE-Other CWE-287 |
26 Feb 2022, 04:53
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://www.cisa.gov/uscert/ics/advisories/icsa-22-034-02 - Third Party Advisory, US Government Resource | |
CPE | cpe:2.3:o:airspan:c5x_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:airspan:a5x:-:*:*:*:*:*:*:* cpe:2.3:h:airspan:c5x:-:*:*:*:*:*:*:* cpe:2.3:o:airspan:a5x_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:airspan:c5c:-:*:*:*:*:*:*:* cpe:2.3:a:airspan:mimosa_management_platform:*:*:*:*:*:*:*:* cpe:2.3:o:airspan:c5c_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:airspan:c6x:-:*:*:*:*:*:*:* cpe:2.3:o:airspan:c6x_firmware:*:*:*:*:*:*:*:* |
|
CVSS |
v2 : v3 : |
v2 : 10.0
v3 : 9.8 |
First Time |
Airspan c5x Firmware
Airspan c6x Firmware Airspan c6x Airspan mimosa Management Platform Airspan Airspan a5x Firmware Airspan c5x Airspan c5c Firmware Airspan c5c Airspan a5x |
|
CWE | CWE-863 |
18 Feb 2022, 18:33
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-02-18 18:15
Updated : 2023-12-10 14:22
NVD link : CVE-2022-21196
Mitre link : CVE-2022-21196
CVE.ORG link : CVE-2022-21196
JSON object : View
Products Affected
airspan
- c6x_firmware
- c6x
- mimosa_management_platform
- c5x_firmware
- c5c_firmware
- a5x_firmware
- c5x
- c5c
- a5x
CWE