Skip to main content

Operations Support System Radio And Core Firmware

2 CVEs product

Monthly

CVE-2021-32571 MEDIUM This Month

In OSS-RC systems of the release 18B and older during data migration procedures certain files containing usernames and passwords are left in the system undeleted but in folders accessible by top. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Ericsson Information Disclosure Operations Support System Radio And Core Firmware
NVD
CVSS 3.1
4.9
EPSS
0.8%
CVE-2021-32569 MEDIUM This Month

In OSS-RC systems of the release 18B and older customer documentation browsing libraries under ALEX are subject to Cross-Site Scripting. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Ericsson XSS Operations Support System Radio And Core Firmware
NVD
CVSS 3.1
6.1
EPSS
0.6%
EPSS 1% CVSS 4.9
MEDIUM This Month

In OSS-RC systems of the release 18B and older during data migration procedures certain files containing usernames and passwords are left in the system undeleted but in folders accessible by top. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Ericsson Information Disclosure Operations Support System Radio And Core Firmware
NVD
EPSS 1% CVSS 6.1
MEDIUM This Month

In OSS-RC systems of the release 18B and older customer documentation browsing libraries under ALEX are subject to Cross-Site Scripting. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Ericsson XSS Operations Support System Radio And Core Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy