Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nokia vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-5827
The Nokia 6131 Near Field Communication (NFC) phone with 05.12 firmware automatically installs software upon completing the download of a JAR file, which makes it easier for remote malicious users to execute arbitrary code via a crafted URI record in an NDEF tag.
Nokia 6131 Nfc 05.12
6.5
CVSSv3
CVE-2021-35487
Nokia Broadcast Message Center up to and including 11.1.0 allows an authenticated user to perform a Boolean Blind SQL Injection attack on the endpoint /owui/block/send-receive-updates (for the Manage Alerts page) via the extIdentifier HTTP POST parameter. This allows an malicious...
Nokia Broadcast Message Center
NA
CVE-2003-0801
Cross-site scripting (XSS) vulnerability in Nokia Electronic Documentation (NED) 5.0 allows remote malicious users to execute arbitrary web script and steal cookies via a URL to the docs/ directory that contains the script.
Nokia Electronic Documentation 5.0
1 EDB exploit
NA
CVE-2003-0802
Nokia Electronic Documentation (NED) 5.0 allows remote malicious users to obtain a directory listing of the WebLogic web root, and the physical path of the NED server, via a "retrieve" action with a location parameter of . (dot).
Nokia Electronic Documentation 5.0
1 EDB exploit
NA
CVE-2003-0803
Nokia Electronic Documentation (NED) 5.0 allows remote malicious users to use NED as an open HTTP proxy via a URL in the location parameter, which NED accesses and returns to the user.
Nokia Electronic Documentation 5.0
1 EDB exploit
9.8
CVSSv3
CVE-2023-41350
Chunghwa Telecom NOKIA G-040W-Q has a vulnerability of insufficient measures to prevent multiple failed authentication attempts. An unauthenticated remote attacker can execute a crafted Javascript to expose captcha in page, making it very easy for bots to bypass the captcha check...
Nokia G-040w-q Firmware G040wqr201207
9.8
CVSSv3
CVE-2023-41351
Chunghwa Telecom NOKIA G-040W-Q has a vulnerability of authentication bypass, which allows an unauthenticated remote malicious user to bypass the authentication mechanism to log in to the device by an alternative URL. This makes it possible for unauthenticated remote malicious us...
Nokia G-040w-q Firmware G040wqr201207
7.2
CVSSv3
CVE-2023-41352
Chunghwa Telecom NOKIA G-040W-Q has a vulnerability of insufficient filtering for user input. A remote attacker with administrator privilege can exploit this vulnerability to perform a Command Injection attack to execute arbitrary commands, disrupt the system or terminate service...
Nokia G-040w-q Firmware G040wqr201207
8.8
CVSSv3
CVE-2023-41353
Chunghwa Telecom NOKIA G-040W-Q has a vulnerability of weak password requirements. A remote attacker with regular user privilege can easily infer the administrator password from system information after logging system, resulting in admin access and performing arbitrary system ope...
Nokia G-040w-q Firmware G040wqr201207
3.3
CVSSv3
CVE-2023-41354
Chunghwa Telecom NOKIA G-040W-Q Firewall function does not block ICMP TIMESTAMP requests by default, an unauthenticated remote attacker can exploit this vulnerability by sending a crafted package, resulting in partially sensitive information exposed to an actor.
Nokia G-040w-q Firmware G040wqr201207
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »