CVE-2022-2484
Severity Score
7.8
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The signature check in the Nokia ASIK AirScale system module version 474021A.101 can be bypassed allowing an attacker to run modified firmware. This could result in the execution of a malicious kernel, arbitrary programs, or modified Nokia programs.
La verificación de firma en el módulo del sistema Nokia ASIK AirScale versión 474021A.101 se puede omitir, permitiendo que un atacante ejecute firmware modificado. Esto podría resultar en la ejecución de un kernel malicioso, programas arbitrarios o programas Nokia modificados.
*Credits:
Joel Cretan, Red Balloon Security
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2022-07-19 CVE Reserved
- 2023-01-06 CVE Published
- 2024-07-29 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-1274: Improper Access Control for Volatile Memory Containing Boot Code
CAPEC
References (1)
| URL | Tag | Source |
|---|---|---|
| https://www.cisa.gov/uscert/ics/advisories/icsa-22-307-02 | Government Resource |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Nokia Search vendor "Nokia" | Asik Airscale 474021a.101 Firmware Search vendor "Nokia" for product "Asik Airscale 474021a.101 Firmware" | - | - |
Affected
| in | Nokia Search vendor "Nokia" | Asik Airscale 474021a.101 Search vendor "Nokia" for product "Asik Airscale 474021a.101" | - | - |
Safe
|