CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-26058
https://notcve.org/view.php?id=CVE-2023-26058
25 Apr 2023 — An XXE issue was discovered in Nokia NetAct before 22 FP2211 via an XML document to a Performance Manager page. Input validation and a proper XML parser configuration are missing. For an external attacker, it is very difficult to exploit this, because a few dynamically created parameters such as Jsession-id, a CSRF token, and an Nxsrf token would be needed. The attack can realistically only be performed by an internal user. • https://nokia.com • CWE-611: Improper Restriction of XML External Entity Reference •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-26059
https://notcve.org/view.php?id=CVE-2023-26059
24 Apr 2023 — An issue was discovered in Nokia NetAct before 22 SP1037. On the Site Configuration Tool tab, attackers can upload a ZIP file which, when processed, exploits Stored XSS. The upload option of the Site Configuration tool does not validate the file contents. The application is in a demilitarised zone behind a perimeter firewall and without exposure to the internet. The attack can only be performed by an internal user. • https://nokia.com • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 0CVE-2023-26060
https://notcve.org/view.php?id=CVE-2023-26060
24 Apr 2023 — An issue was discovered in Nokia NetAct before 22 FP2211. On the Working Set Manager page, users can create a Working Set with a name that has a client-side template injection payload. Input validation is missing during creation of the working set. For an external attacker, it is very difficult to exploit this, because a few dynamically created parameters such as Jsession-id, a CSRF token, and an Nxsrf token would be needed. The attack can realistically only be performed by an internal user. • https://nokia.com • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-26061
https://notcve.org/view.php?id=CVE-2023-26061
24 Apr 2023 — An issue was discovered in Nokia NetAct before 22 FP2211. On the Scheduled Search tab under the Alarm Reports Dashboard page, users can create a script to inject XSS. Input validation was missing during creation of a scheduled task. For an external attacker, it is very difficult to exploit this, because a few dynamically created parameters such as Jsession-id, a CSRF token, and an Nxsrf token would be needed. The attack can realistically only be performed by an internal user. • https://nokia.com • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-31244 – Nokia OneNDS 17 Insecure Permissions / Privilege Escalation
https://notcve.org/view.php?id=CVE-2022-31244
21 Apr 2023 — Nokia OneNDS 17r2 has Insecure Permissions vulnerability that allows for privilege escalation. Nokia OneNDS 17 has loose sudo permissions that can allow users to escalate privileges. • https://packetstorm.news/files/id/171970 • CWE-276: Incorrect Default Permissions •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 2CVE-2022-30759 – Nokia OneNDS 20.9 Insecure Permissions / Privilege Escalation
https://notcve.org/view.php?id=CVE-2022-30759
21 Apr 2023 — In Nokia One-NDS (aka Network Directory Server) through 20.9, some Sudo permissions can be exploited by some users to escalate to root privileges and execute arbitrary commands. Nokia OneNDS 20.9 has loose sudo permissions that can allow users to escalate privileges. • https://packetstorm.news/files/id/171971 • CWE-276: Incorrect Default Permissions •
CVSS: 8.4EPSS: 0%CPEs: 2EXPL: 0CVE-2022-2484
https://notcve.org/view.php?id=CVE-2022-2484
06 Jan 2023 — The signature check in the Nokia ASIK AirScale system module version 474021A.101 can be bypassed allowing an attacker to run modified firmware. This could result in the execution of a malicious kernel, arbitrary programs, or modified Nokia programs. La verificación de firma en el módulo del sistema Nokia ASIK AirScale versión 474021A.101 se puede omitir, permitiendo que un atacante ejecute firmware modificado. Esto podría resultar en la ejecución de un kernel malicioso, programas arbitrarios o programas Nok... • https://www.cisa.gov/uscert/ics/advisories/icsa-22-307-02 • CWE-1274: Improper Access Control for Volatile Memory Containing Boot Code •
CVSS: 8.4EPSS: 0%CPEs: 4EXPL: 0CVE-2022-2483
https://notcve.org/view.php?id=CVE-2022-2483
06 Jan 2023 — The bootloader in the Nokia ASIK AirScale system module (versions 474021A.101 and 474021A.102) loads public keys for firmware verification signature. If an attacker modifies the flash contents to corrupt the keys, secure boot could be permanently disabled on a given device. El gestor de arranque en el módulo del sistema Nokia ASIK AirScale (versiones 474021A.101 y 474021A.102) carga claves públicas para la firma de verificación del firmware. Si un atacante modifica el contenido flash para dañar las claves, ... • https://www.cisa.gov/uscert/ics/advisories/icsa-22-307-02 • CWE-1282: Assumed-Immutable Data is Stored in Writable Memory •
CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 0CVE-2022-2482
https://notcve.org/view.php?id=CVE-2022-2482
06 Jan 2023 — A vulnerability exists in Nokia’s ASIK AirScale system module (versions 474021A.101 and 474021A.102) that could allow an attacker to place a script on the file system accessible from Linux. A script placed in the appropriate place could allow for arbitrary code execution in the bootloader. Existe una vulnerabilidad en el módulo del sistema ASIK AirScale de Nokia (versiones 474021A.101 y 474021A.102) que podría permitir a un atacante colocar un script en el sistema de archivos accesible desde Linux. Un scrip... • https://www.cisa.gov/uscert/ics/advisories/icsa-22-307-02 • CWE-1274: Improper Access Control for Volatile Memory Containing Boot Code •
CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 1CVE-2022-36221
https://notcve.org/view.php?id=CVE-2022-36221
21 Dec 2022 — Nokia Fastmile 3tg00118abad52 is affected by an authenticated path traversal vulnerability which allows attackers to read any named pipe file on the system. Nokia Fastmile 3tg00118abad52 se ve afectado por una vulnerabilidad de path traversal autenticada que permite a los atacantes leer cualquier archivo de canalización con nombre en el sistema. • https://eddiez.me/hacking-the-nokia-fastmile-pt2/#pipe-path-traversal • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •