Lucene search
K

31 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-19693

Malicious code in bioql PyPI...

4.2CVSS6.6AI score0.00168EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-19704

Malicious code in bioql PyPI...

6.4CVSS6.6AI score0.00135EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-19702

Malicious code in bioql PyPI...

6.4CVSS6.6AI score0.00159EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/04 9:24 a.m.8 views

CVE-2025-24333

Nokia Single RAN baseband software earlier than 24R1-SR 1.0 MP contains administrative shell input validation fault, which authenticated admin user can, in theory, potentially use for injecting arbitrary commands for unprivileged baseband OAM service process execution via special characters added...

6.4CVSS6.8AI score0.00159EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/04 9:24 a.m.9 views

CVE-2025-24335

Nokia Single RAN baseband software versions earlier than 24R1-SR 2.1 MP contain a SOAP message input validation flaw, which in theory could potentially be used for causing resource exhaustion in the Single RAN baseband OAM service. No practical exploit has been detected for this flaw. However, th...

2CVSS6.4AI score0.0044EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/04 9:24 a.m.9 views

CVE-2025-24331

The Single RAN baseband OAM service is intended to run as an unprivileged service. However, it initially starts with root privileges and assigns certain capabilities before dropping to an unprivileged level. The capabilities retained from the root period are considered extensive after the privile...

6.4CVSS6.5AI score0.00135EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/04 8:24 a.m.6 views

CVE-2025-24328

Sending a crafted SOAP "set" operation message within the Mobile Network Operator MNO internal Radio Access Network RAN management network can cause Nokia Single RAN baseband OAM service component restart with software versions earlier than release 24R1-SR 1.0 MP. This issue has been corrected to...

4.2CVSS6.8AI score0.00168EPSS
Exploits0References1
NVD
NVD
added 2025/07/02 9:15 a.m.7 views

CVE-2025-24333

Nokia Single RAN baseband software earlier than 24R1-SR 1.0 MP contains administrative shell input validation fault, which authenticated admin user can, in theory, potentially use for injecting arbitrary commands for unprivileged baseband OAM service process execution via special characters added...

6.4CVSS0.00159EPSS
Exploits0References1
NVD
NVD
added 2025/07/02 9:15 a.m.5 views

CVE-2025-24331

The Single RAN baseband OAM service is intended to run as an unprivileged service. However, it initially starts with root privileges and assigns certain capabilities before dropping to an unprivileged level. The capabilities retained from the root period are considered extensive after the privile...

6.4CVSS0.00135EPSS
Exploits0References1
NVD
NVD
added 2025/07/02 9:15 a.m.14 views

CVE-2025-24330

Sending a crafted SOAP "provision" operation message PlanId field within the Mobile Network Operator MNO internal Radio Access Network RAN management network can cause path traversal issue in Nokia Single RAN baseband software with versions earlier than release 24R1-SR 1.0 MP. This issue has been...

6.4CVSS0.00229EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/02 8:35 a.m.6 views

CVE-2025-24335 SOAP message input validation fault could in theory cause OAM service resource exhaustion

Nokia Single RAN baseband software versions earlier than 24R1-SR 2.1 MP contain a SOAP message input validation flaw, which in theory could potentially be used for causing resource exhaustion in the Single RAN baseband OAM service. No practical exploit has been detected for this flaw. However, th...

7.1AI score0.0044EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/02 8:35 a.m.22 views

CVE-2025-24335 SOAP message input validation fault could in theory cause OAM service resource exhaustion

Nokia Single RAN baseband software versions earlier than 24R1-SR 2.1 MP contain a SOAP message input validation flaw, which in theory could potentially be used for causing resource exhaustion in the Single RAN baseband OAM service. No practical exploit has been detected for this flaw. However, th...

0.0044EPSS
Exploits0References1
CVE
CVE
added 2025/07/02 8:35 a.m.27 views

CVE-2025-24335

CVE-2025-24335 affects Nokia Single RAN baseband software versions earlier than 24R1-SR 2.1 MP, where a SOAP message input validation flaw could potentially cause resource exhaustion of the OAM service. The issue has not been observed in the wild; Nokia reports the vulnerability is mitigated star...

2CVSS6.6AI score0.0044EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/02 8:32 a.m.6 views

CVE-2025-24333 Administrative user shell input validation fault

Nokia Single RAN baseband software earlier than 24R1-SR 1.0 MP contains administrative shell input validation fault, which authenticated admin user can, in theory, potentially use for injecting arbitrary commands for unprivileged baseband OAM service process execution via special characters added...

6.9AI score0.00159EPSS
Exploits0References1
CVE
CVE
added 2025/07/02 8:32 a.m.24 views

CVE-2025-24333

CVE-2025-24333 affects Nokia Single RAN baseband software prior to 24R1-SR 1.0 MP. The root cause is an administrative shell input validation fault that could allow an authenticated admin to inject commands into the baseband OAM service process via special characters in the internal COMA_config.x...

6.4CVSS7AI score0.00159EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/02 8:30 a.m.5 views

CVE-2025-24331 Nokia Single RAN baseband OAM service extensive capabilities

The Single RAN baseband OAM service is intended to run as an unprivileged service. However, it initially starts with root privileges and assigns certain capabilities before dropping to an unprivileged level. The capabilities retained from the root period are considered extensive after the privile...

6.6AI score0.00135EPSS
Exploits0References1
CVE
CVE
added 2025/07/02 8:30 a.m.25 views

CVE-2025-24331

The CVE-2025-24331 entry concerns Nokia’s Single RAN baseband OAM service. Versions prior to 24R1-SR 0.2 MP start as root and retain capabilities after dropping to unprivileged, potentially enabling actions beyond the intended scope (e.g., root access or modifying root-owned files). The issue has...

6.4CVSS6.7AI score0.00135EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/02 8:30 a.m.11 views

CVE-2025-24331 Nokia Single RAN baseband OAM service extensive capabilities

The Single RAN baseband OAM service is intended to run as an unprivileged service. However, it initially starts with root privileges and assigns certain capabilities before dropping to an unprivileged level. The capabilities retained from the root period are considered extensive after the privile...

0.00135EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/02 8:29 a.m.9 views

CVE-2025-24330 OAM service path traversal issue caused by a crafted SOAP message PlanId field within the RAN management network

Sending a crafted SOAP "provision" operation message PlanId field within the Mobile Network Operator MNO internal Radio Access Network RAN management network can cause path traversal issue in Nokia Single RAN baseband software with versions earlier than release 24R1-SR 1.0 MP. This issue has been...

6.4AI score0.00229EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/02 8:29 a.m.16 views

CVE-2025-24330 OAM service path traversal issue caused by a crafted SOAP message PlanId field within the RAN management network

Sending a crafted SOAP "provision" operation message PlanId field within the Mobile Network Operator MNO internal Radio Access Network RAN management network can cause path traversal issue in Nokia Single RAN baseband software with versions earlier than release 24R1-SR 1.0 MP. This issue has been...

0.00229EPSS
Exploits0References1
Rows per page
Query Builder