Lucene search
K

29 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-19725

Malicious code in bioql PyPI...

6.4CVSS6.6AI score0.00229EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.21 views

EUVD-2025-19700

Malicious code in bioql PyPI...

2CVSS6.6AI score0.0044EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-19701

Malicious code in bioql PyPI...

3.3CVSS6.6AI score0.00125EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-19693

Malicious code in bioql PyPI...

4.2CVSS6.6AI score0.00168EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/04 9:24 a.m.9 views

CVE-2025-24334

The Nokia Single RAN baseband software earlier than 23R2-SR 1.0 MP can be made to reveal the exact software release version by sending a specific HTTP POST request through the Mobile Network Operator MNO internal RAN management network...

3.3CVSS6.4AI score0.00125EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/04 9:24 a.m.8 views

CVE-2025-24333

Nokia Single RAN baseband software earlier than 24R1-SR 1.0 MP contains administrative shell input validation fault, which authenticated admin user can, in theory, potentially use for injecting arbitrary commands for unprivileged baseband OAM service process execution via special characters added...

6.4CVSS6.8AI score0.00159EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/04 9:24 a.m.17 views

CVE-2025-24332

Nokia Single RAN AirScale baseband allows an authenticated administrative user access to all physical boards after performing a single login to the baseband system board. The baseband does not re-authenticate the user when they connect from the baseband system board to the baseband capacity board...

7.1CVSS6.1AI score0.00169EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/04 8:24 a.m.6 views

CVE-2025-24328

Sending a crafted SOAP "set" operation message within the Mobile Network Operator MNO internal Radio Access Network RAN management network can cause Nokia Single RAN baseband OAM service component restart with software versions earlier than release 24R1-SR 1.0 MP. This issue has been corrected to...

4.2CVSS6.8AI score0.00168EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/07/04 12:0 a.m.6 views

The vulnerability of the OAM service of the Nokia Single RAN network management platform allows a attacker to cause a service failure.

The vulnerability of the OAM service of the Nokia Single RAN network management platform is related to buffer overflow in the stack. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

4.3CVSS5.8AI score0.00168EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/07/04 12:0 a.m.5 views

The vulnerability of the OAM service of the Nokia Single RAN network management platform allows a hacker to enhance their privileges.

The vulnerability of the OAM service of the Nokia Single RAN network management platform is related to incorrect restrictions on the path name to the catalog, leading to errors in privilege management. Exploiting this vulnerability can allow attackers to enhance their privileges...

6.4CVSS5.5AI score0.00135EPSS
Exploits0References2
NVD
NVD
added 2025/07/02 9:15 a.m.11 views

CVE-2025-24329

Sending a crafted SOAP "provision" operation message archive field within the Mobile Network Operator MNO internal Radio Access Network RAN management network can cause path traversal issue in Nokia Single RAN baseband software with versions earlier than release 24R1-SR 1.0 MP. This issue has bee...

6.4CVSS0.00229EPSS
Exploits0References1
NVD
NVD
added 2025/07/02 9:15 a.m.7 views

CVE-2025-24334

The Nokia Single RAN baseband software earlier than 23R2-SR 1.0 MP can be made to reveal the exact software release version by sending a specific HTTP POST request through the Mobile Network Operator MNO internal RAN management network...

3.3CVSS0.00125EPSS
Exploits0References1
NVD
NVD
added 2025/07/02 9:15 a.m.18 views

CVE-2025-24330

Sending a crafted SOAP "provision" operation message PlanId field within the Mobile Network Operator MNO internal Radio Access Network RAN management network can cause path traversal issue in Nokia Single RAN baseband software with versions earlier than release 24R1-SR 1.0 MP. This issue has been...

6.4CVSS0.00229EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/02 8:35 a.m.6 views

CVE-2025-24335 SOAP message input validation fault could in theory cause OAM service resource exhaustion

Nokia Single RAN baseband software versions earlier than 24R1-SR 2.1 MP contain a SOAP message input validation flaw, which in theory could potentially be used for causing resource exhaustion in the Single RAN baseband OAM service. No practical exploit has been detected for this flaw. However, th...

7.1AI score0.0044EPSS
Exploits0References1
CVE
CVE
added 2025/07/02 8:35 a.m.27 views

CVE-2025-24335

CVE-2025-24335 affects Nokia Single RAN baseband software versions earlier than 24R1-SR 2.1 MP, where a SOAP message input validation flaw could potentially cause resource exhaustion of the OAM service. The issue has not been observed in the wild; Nokia reports the vulnerability is mitigated star...

2CVSS6.6AI score0.0044EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/02 8:35 a.m.24 views

CVE-2025-24335 SOAP message input validation fault could in theory cause OAM service resource exhaustion

Nokia Single RAN baseband software versions earlier than 24R1-SR 2.1 MP contain a SOAP message input validation flaw, which in theory could potentially be used for causing resource exhaustion in the Single RAN baseband OAM service. No practical exploit has been detected for this flaw. However, th...

0.0044EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/02 8:34 a.m.5 views

CVE-2025-24334 The Nokia Single RAN baseband reveals its software version through the MNO internal RAN management network

The Nokia Single RAN baseband software earlier than 23R2-SR 1.0 MP can be made to reveal the exact software release version by sending a specific HTTP POST request through the Mobile Network Operator MNO internal RAN management network...

7.1AI score0.00125EPSS
Exploits0References1
CVE
CVE
added 2025/07/02 8:34 a.m.22 views

CVE-2025-24334

The Nokia Single RAN baseband software before 23R2-SR 1.0 MP is affected. An attacker can reveal the exact software release version by sending a specific HTTP POST request through the MNO internal RAN management network, leading to information disclosure. Remediation: upgrade to 23R2-SR 1.0 MP or...

3.3CVSS6.6AI score0.00125EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/02 8:29 a.m.9 views

CVE-2025-24330 OAM service path traversal issue caused by a crafted SOAP message PlanId field within the RAN management network

Sending a crafted SOAP "provision" operation message PlanId field within the Mobile Network Operator MNO internal Radio Access Network RAN management network can cause path traversal issue in Nokia Single RAN baseband software with versions earlier than release 24R1-SR 1.0 MP. This issue has been...

6.4AI score0.00229EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/02 8:27 a.m.17 views

CVE-2025-24329 OAM service path traversal issue caused by a crafted SOAP message archive field within the RAN management network

Sending a crafted SOAP "provision" operation message archive field within the Mobile Network Operator MNO internal Radio Access Network RAN management network can cause path traversal issue in Nokia Single RAN baseband software with versions earlier than release 24R1-SR 1.0 MP. This issue has bee...

0.00229EPSS
Exploits0References1
Rows per page
Query Builder