CVE-2023-25185

7.8HIGH

Key Information:

Vendor: Nokia
Status: Asika Airscale Firmware
Vendor: CVE Published:; 16 June 2023

Summary

An issue was discovered on NOKIA Airscale ASIKA Single RAN devices before 21B. A mobile network solution internal fault was found in Nokia Single RAN software releases. Certain software processes in the BTS internal software design have unnecessarily high privileges to BTS embedded operating system (OS) resources.

References

https://Nokia.com

https://www.nokia.com/about-us/security-and-privacy/produ...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 16, 2023
Vulnerability Reserved
Feb 4, 2023

Collectors

NVD DatabaseMitre Database