Airspan.AirSpot.5410.Unrestricted.File.Upload

description-logoDescription

This indicates an attack attempt to exploit an Unrestricted File Upload Vulnerability in Airspan AirSpot 5410.
This vulnerability is due to improper input validation when uploading files. A remote, unauthenticated attacker can exploit this vulnerability by sending a crafted request to the target server. Successfully exploiting this vulnerability can result in uploading of web shells and remote code execution.

affected-products-logoAffected Products

Airspan AirSpot 5410 devices version 0.3.4.1-4 and prior

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Currently we are unaware of any vendor supplied patch or updates available for this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2022-09-19 22.396 Default_action:pass:drop
2022-09-07 22.387