Vulnerabilities > Nokia > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-16 | CVE-2023-25187 | Use of Hard-coded Credentials vulnerability in Nokia Asika Airscale Firmware An issue was discovered on NOKIA Airscale ASIKA Single RAN devices before 21B. | 7.0 |
| 2023-06-16 | CVE-2023-25185 | Improper Privilege Management vulnerability in Nokia Asika Airscale Firmware An issue was discovered on NOKIA Airscale ASIKA Single RAN devices before 21B. | 7.8 |
| 2023-06-16 | CVE-2023-25188 | Improper Privilege Management vulnerability in Nokia Asika Airscale Firmware An issue was discovered on NOKIA Airscale ASIKA Single RAN devices before 21B. | 7.8 |
| 2023-06-14 | CVE-2023-26062 | Improper Privilege Management vulnerability in Nokia web Element Manager A mobile network solution internal fault is found in Nokia Web Element Manager before 22 R1, in which an authenticated, unprivileged user can execute administrative functions. | 7.8 |
| 2023-05-02 | CVE-2022-30759 | Incorrect Default Permissions vulnerability in Nokia One-Nds In Nokia One-NDS (aka Network Directory Server) through 20.9, some Sudo permissions can be exploited by some users to escalate to root privileges and execute arbitrary commands. | 8.8 |
| 2023-04-25 | CVE-2022-31244 | Incorrect Default Permissions vulnerability in Nokia One-Network Directory Server 17R2 Nokia OneNDS 17r2 has Insecure Permissions vulnerability that allows for privilege escalation. | 7.8 |
| 2023-04-24 | CVE-2023-26060 | Code Injection vulnerability in Nokia Netact 18A An issue was discovered in Nokia NetAct before 22 FP2211. | 8.8 |
| 2023-01-06 | CVE-2022-2482 | Insufficient Protections on the Volatile Memory Containing Boot Code vulnerability in Nokia products A vulnerability exists in Nokia’s ASIK AirScale system module (versions 474021A.101 and 474021A.102) that could allow an attacker to place a script on the file system accessible from Linux. | 8.8 |
| 2023-01-06 | CVE-2022-2483 | Assumed-Immutable Data Stored in Writable Memory vulnerability in Nokia products The bootloader in the Nokia ASIK AirScale system module (versions 474021A.101 and 474021A.102) loads public keys for firmware verification signature. | 7.1 |
| 2023-01-06 | CVE-2022-2484 | Insufficient Protections on the Volatile Memory Containing Boot Code vulnerability in Nokia Asik Airscale 474021A.101 Firmware The signature check in the Nokia ASIK AirScale system module version 474021A.101 can be bypassed allowing an attacker to run modified firmware. | 7.8 |