1350 Optical Management System Security Vulnerabilities and Issues — 1350 Optical Management System CVE List

Lucene search

Nokia1350 Optical Management System

6 matches found

CVE•added 2022/09/19 4:15 p.m.•58 views

CVE-2022-40715

An issue was discovered in NOKIA 1350OMS R14.2. An Absolute Path Traversal vulnerability exists for a specific endpoint via the logfile parameter, allowing a remote authenticated attacker to read files on the filesystem arbitrarily.

6.5CVSS6.1AI score0.00104EPSS

CVE•added 2022/09/13 9:15 p.m.•55 views

CVE-2022-39816

In NOKIA 1350 OMS R14.2, Insufficiently Protected Credentials (cleartext administrator password) occur in the edit configuration page. Exploitation requires an authenticated attacker.

6.5CVSS6.3AI score0.00095EPSS

CVE•added 2022/09/19 4:15 p.m.•47 views

CVE-2022-40714

An issue was discovered in NOKIA 1350OMS R14.2. Reflected XSS exists under different /oms1350/* endpoints.

6.1CVSS5.9AI score0.00114EPSS

CVE•added 2022/09/13 9:15 p.m.•43 views

CVE-2022-39814

In NOKIA 1350 OMS R14.2, an Open Redirect vulnerability occurs is the login page via next HTTP GET parameter.

6.1CVSS6.3AI score0.00095EPSS

CVE•added 2022/09/19 4:15 p.m.•42 views

CVE-2022-40712

An issue was discovered in NOKIA 1350OMS R14.2. Reflected XSS exists under different /cgi-bin/R14.2* endpoints.

6.1CVSS5.9AI score0.00114EPSS

CVE•added 2022/09/19 4:15 p.m.•38 views

CVE-2022-40713

An issue was discovered in NOKIA 1350OMS R14.2. Multiple Relative Path Traversal issues exist in different specific endpoints via the file parameter, allowing a remote authenticated attacker to read files on the filesystem arbitrarily.

6.5CVSS6.1AI score0.00104EPSS