Vulnerabilities > CVE-2023-41355 - Unspecified vulnerability in Nokia G-040W-Q Firmware G040Wqr201207

047910
CVSS 9.8 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
nokia
critical

Summary

Chunghwa Telecom NOKIA G-040W-Q Firewall function has a vulnerability of input validation for ICMP redirect messages. An unauthenticated remote attacker can exploit this vulnerability by sending a crafted package to modify the network routing table, resulting in a denial of service or sensitive information leaking.

Vulnerable Configurations

Part Description Count
OS
Nokia
1
Hardware
Nokia
1