Local Privilege Escalation Vulnerability in Nokia SR Linux
CVE-2025-10262

6.3MEDIUM

Key Information:

Vendor

Nokia

Status
Vendor
CVE Published:
16 June 2026

What is CVE-2025-10262?

Nokia SR Linux contains a vulnerability that allows for local privilege escalation due to unsanitized format validation. This issue permits an authenticated user to execute arbitrary commands with elevated privileges, potentially compromising the integrity and security of the system. Users are advised to apply the necessary security patches to mitigate the risk associated with this vulnerability.

Affected Version(s)

SR Linux < 23.10.8

SR Linux < 23.10.8 < 23.10.8

SR Linux < 24.10.6 < 24.10.6

References

CVSS V3.1

Score:
6.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
High
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.