CVE-2022-36307

Name of the Vulnerable Software and Affected Versions AirVelocity 1500 versions prior to 15.18.00.2511 Other AirVelocity and AirSpeed models (affected versions not specified)

Description The issue concerns the printing of SNMP credentials on the physically accessible serial port during boot. This could potentially expose sensitive information. The estimated number of affected devices is not specified. There is no information about real-world incidents where this issue was exploited.

Recommendations For AirVelocity 1500 versions prior to 15.18.00.2511, update to software version 15.18.00.2511 or later. For other AirVelocity and AirSpeed models, at the moment, there is no information about a newer version that contains a fix for this vulnerability.