Security Advisory

CVE-2022-36306

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-08-16 00:32:07

Last updated 2024-08-03 10:00:04

Assigner facebook

State PUBLISHED

Description

An authenticated attacker can enumerate and download sensitive files, including the eNodeBs web management UIs TLS private key, the web server binary, and the web server configuration file. These vulnerabilities were found in AirVelocity 1500 running software version 9.3.0.01249, were still present in 15.18.00.2511, and may affect other AirVelocity and AirSpeed models.

← Browse all CVEs View on cve.org ↗