RSS   Vulnerabilities for 'Network manager'   RSS

2022-03-10
 
CVE-2021-28488

CWE-732
 

 
Ericsson Network Manager (ENM) before 21.2 has incorrect access-control behavior (that only affects the level of access available to persons who were already granted a highly privileged role). Users in the same AMOS authorization group can retrieve managed-network that was not set to be accessible to the entire group (i.e., was only set to be accessible to a subset of that group).

 

 >>> Vendor: Ericsson 9 Products
Axc tigris multiservice access platform
Hm220dp adsl modem
Drutt mobile service delivery platform
Active library explorer
Bscs ix r18 billing \& rating admx
Bscs ix r18 billing \& rating mx
Network location mps gmpc21
Codechecker
Network manager


Copyright 2022, cxsecurity.com

 

Back to Top