RSS   Vulnerabilities for 'Network location mps gmpc21'   RSS

2021-11-03
 
CVE-2021-43338

CWE-89
 

 
In Ericsson Network Location MPS GMPC21, it is possible to creates a new admin user with a SQL Query for file_name in the export functionality.

 
 
CVE-2021-43339

CWE-77
 

 
In Ericsson Network Location before 2021-07-31, it is possible for an authenticated attacker to inject commands via file_name in the export functionality.

 

 >>> Vendor: Ericsson 9 Products
Axc tigris multiservice access platform
Hm220dp adsl modem
Drutt mobile service delivery platform
Active library explorer
Bscs ix r18 billing \& rating admx
Bscs ix r18 billing \& rating mx
Network location mps gmpc21
Codechecker
Network manager


Copyright 2022, cxsecurity.com

 

Back to Top