Vulnerabilities > CVE-2021-45896 - Unspecified vulnerability in Nokia Fastmile Firmware 3Tg00118Abad52

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

nokia

NVD

Published: 2021-12-27

Updated: 2023-08-08

Summary

Nokia FastMile 3TG00118ABAD52 devices allow privilege escalation by an authenticated user via is_ctc_admin=1 to login_web_app.cgi and use of Import Config File.

Vulnerable Configurations

Part	Description	Count
OS	Nokia Nokia Fastmile Firmware 3Tg00118Abad52	1
Hardware	Nokia Nokia Fastmile -	1

References

https://eddiez.me/hacking-the-nokia-fastmile/
https://gist.github.com/thedroidgeek/80c379aa43b71015d71da130f85a435a