Path Traversal Vulnerability in Nokia IMPACT IoT Platform
CVE-2019-17406

5.3MEDIUM

Key Information:

Vendor: Nokia
Status: Impact
Vendor: CVE Published:; 25 November 2019

What is CVE-2019-17406?

The Nokia IMPACT IoT Platform versions prior to 18A are susceptible to a path traversal vulnerability. This flaw may allow an attacker to exploit the system, potentially leading to remote code execution if combined with other known vulnerabilities. Organizations using this platform should apply necessary security patches to mitigate these risks.

References

https://www.nokia.com/networks/solutions/impact-iot-platf...

x_refsource_MISC

https://www.telecomitalia.com/tit/it/innovazione/cybersec...

x_refsource_MISC

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 25, 2019
Vulnerability Reserved
Oct 9, 2019