Remote Code Injection Vulnerability in Nokia Impact Software
CVE-2023-31044

2LOW

Key Information:

Vendor: Nokia
Status: Impact Software
Vendor: CVE Published:; 3 March 2026

What is CVE-2023-31044?

A vulnerability has been identified in Nokia Impact software prior to Mobile 23_FP1, where an authenticated user can exploit the Add Campaign functionality. This flaw allows attackers to inject malicious payloads into the Campaign Name field. The compromised data can later be exported to a CSV file, which may be automatically executed by spreadsheet software, posing risks of data exfiltration and other malicious activities.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://nokia.com

https://www.gruppotim.it/it/footer/red-team/2023/Motive-I...

CVSS V3.1

Score:

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

High

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Mar 3, 2026
Vulnerability Reserved
Apr 23, 2023

JSON

Nokia

What is CVE-2023-31044?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.