CVE-2022-36307

CVE-2022-36307

Vendor Airspan
Product AirVelocity
Weakness CWE-522 · Insufficiently protected credentials
Published August 16, 2022
Last update August 3, 2024

CVSS base score

What the vulnerability does

01Description

The AirVelocity 1500 prints SNMP credentials on its physically accessible serial port during boot. This was fixed in AirVelocity 1500 software version 15.18.00.2511 and may affect other AirVelocity and AirSpeed models.

Key dates

02Disclosure timeline

August 16, 2022 CVE published
August 3, 2024 Record updated