Vulnerabilities > Nokia
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-24 | CVE-2022-30280 | Cross-Site Request Forgery (CSRF) vulnerability in Nokia Netact 22.0.0.62 /SecurityManagement/html/createuser.jsf in Nokia NetAct 22 allows CSRF. | 8.8 |
| 2023-06-16 | CVE-2023-25187 | Use of Hard-coded Credentials vulnerability in Nokia Asika Airscale Firmware An issue was discovered on NOKIA Airscale ASIKA Single RAN devices before 21B. | 7.0 |
| 2023-06-16 | CVE-2023-25185 | Improper Privilege Management vulnerability in Nokia Asika Airscale Firmware An issue was discovered on NOKIA Airscale ASIKA Single RAN devices before 21B. | 7.8 |
| 2023-06-16 | CVE-2023-25186 | Path Traversal vulnerability in Nokia Asika Airscale Firmware An issue was discovered on NOKIA Airscale ASIKA Single RAN devices before 21B. | 2.8 |
| 2023-06-16 | CVE-2023-25188 | Improper Privilege Management vulnerability in Nokia Asika Airscale Firmware An issue was discovered on NOKIA Airscale ASIKA Single RAN devices before 21B. | 7.8 |
| 2023-06-14 | CVE-2023-26062 | Improper Privilege Management vulnerability in Nokia web Element Manager 21B A mobile network solution internal fault is found in Nokia Web Element Manager before 22 R1, in which an authenticated, unprivileged user can execute administrative functions. | 7.8 |
| 2023-05-02 | CVE-2022-30759 | Incorrect Default Permissions vulnerability in Nokia One-Nds 20.9 In Nokia One-NDS (aka Network Directory Server) through 20.9, some Sudo permissions can be exploited by some users to escalate to root privileges and execute arbitrary commands. | 8.8 |
| 2023-04-25 | CVE-2022-31244 | Incorrect Default Permissions vulnerability in Nokia One-Network Directory Server 17R2 Nokia OneNDS 17r2 has Insecure Permissions vulnerability that allows for privilege escalation. | 7.8 |
| 2023-04-25 | CVE-2023-26057 | XXE vulnerability in Nokia Netact 20.1 An XXE issue was discovered in Nokia NetAct before 22 FP2211 via an XML document to the Configuration Dashboard page. | 6.5 |
| 2023-04-25 | CVE-2023-26058 | XXE vulnerability in Nokia Netact 20.1 An XXE issue was discovered in Nokia NetAct before 22 FP2211 via an XML document to a Performance Manager page. | 6.5 |