CVE-2025-9974 Insufficient Input Validation on WEBUI in Nokia ONT/Beacon product

The unified WEBUI application of the ONT/Beacon device contains an input handling flaw that allows authenticated users to trigger unintended system-level command execution. Due to insufficient validation of user-supplied data, a low-privileged authenticated attacker may be able to execute arbitra...

CVE-2025-9974 Insufficient Input Validation on WEBUI in Nokia ONT/Beacon product

The unified WEBUI application of the ONT/Beacon device contains an input handling flaw that allows authenticated users to trigger unintended system-level command execution. Due to insufficient validation of user-supplied data, a low-privileged authenticated attacker may be able to execute arbitra...

CVE-2025-9974

The CVE-2025-9974 entry concerns the unified WEBUI of Nokia ONT/Beacon devices. The issue is an input handling flaw in the WEBUI that, due to insufficient validation of user-supplied data, allows authenticated users with low privileges to trigger system-level command execution on the underlying O...

Nokia ONT 安全漏洞

Nokia ONT is a fiber-optic network terminal device developed by Finnish company Nokia. Nokia ONT has a security vulnerability, which stems from defects in its unified WEBUI application programming. This vulnerability may allow low-privilege users who are authenticated to execute arbitrary...