Vulnerability Details CVE-2022-21143
MMP: All versions prior to v1.0.3, PTP C-series: Device versions prior to v2.8.6.1, and PTMP C-series and A5x: Device versions prior to v2.5.4.1 does not properly sanitize user input on several locations, which may allow an attacker to inject arbitrary commands.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 45.8%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 10.0
References
Products affected by CVE-2022-21143
-
cpe:2.3:a:airspan:mimosa_management_platform:*
-
cpe:2.3:h:airspan:a5x:-
-
cpe:2.3:h:airspan:c5c:-
-
cpe:2.3:h:airspan:c5x:-
-
cpe:2.3:h:airspan:c6x:-
-
cpe:2.3:o:airspan:a5x_firmware:*
-
cpe:2.3:o:airspan:c5c_firmware:*
-
cpe:2.3:o:airspan:c5x_firmware:*
-
cpe:2.3:o:airspan:c6x_firmware:*