Vulnerabilities > CVE-2023-41354 - Unspecified vulnerability in Nokia G-040W-Q Firmware G040Wqr201207

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

nokia

NVD

Published: 2023-11-03

Updated: 2024-10-03

Summary

Chunghwa Telecom NOKIA G-040W-Q Firewall function does not block ICMP TIMESTAMP requests by default, an unauthenticated remote attacker can exploit this vulnerability by sending a crafted package, resulting in partially sensitive information exposed to an actor.

Vulnerable Configurations

Part	Description	Count
OS	Nokia Nokia G 040W Q Firmware G040Wqr201207	1
Hardware	Nokia Nokia G 040W Q -	1

References

https://www.twcert.org.tw/tw/cp-132-7504-c6a5e-1.html