Vulnerabilities > CVE-2023-41354 - Unspecified vulnerability in Nokia G-040W-Q Firmware G040Wqr201207

CVSS 3.3 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

local

low complexity

nokia

NVD

Published: 2023-11-03

Updated: 2023-11-13

Summary

Chunghwa Telecom NOKIA G-040W-Q Firewall function does not block ICMP TIMESTAMP requests by default, an unauthenticated remote attacker can exploit this vulnerability by sending a crafted package, resulting in partially sensitive information exposed to an actor.

Vulnerable Configurations

Part	Description	Count
OS	Nokia Nokia G 040W Q Firmware G040Wqr201207	1
Hardware	Nokia Nokia G 040W Q -	1

References

https://www.twcert.org.tw/tw/cp-132-7504-c6a5e-1.html