Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nokia vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2022-30280
/SecurityManagement/html/createuser.jsf in Nokia NetAct 22 allows CSRF. A remote attacker is able to create users with arbitrary privileges, even administrative privileges. The application (even if it implements a CSRF token for the random GET request) does not ever verify a CSRF...
Nokia Netact 22.0.0.62
NA
CVE-2005-0681
Nokia Symbian 60 allows remote malicious users to cause a denial of service (phone restart) via a Bluetooth nickname.
Nokia Series 60
1 EDB exploit
5.4
CVSSv3
CVE-2021-26596
An issue exists in Nokia NetAct 18A. A malicious user can change a filename of an uploaded file to include JavaScript code, which is then stored and executed by a victim's web browser. The most common mechanism for delivering malicious content is to include it as a parameter...
Nokia Netact 18a
NA
CVE-2003-0137
SNMP daemon in the DX200 based network element for Nokia Serving GPRS support node (SGSN) allows remote malicious users to read SNMP options via arbitrary community strings.
Nokia Sgsn Dx200
8.8
CVSSv3
CVE-2022-30759
In Nokia One-NDS (aka Network Directory Server) up to and including 20.9, some Sudo permissions can be exploited by some users to escalate to root privileges and execute arbitrary commands.
Nokia One-nds
NA
CVE-2012-2442
Buffer overflow in the Video Manager in Nokia PC Suite 7.1.180.64 and previous versions allows remote malicious users to cause a denial of service via a crafted mp4 file.
Nokia Pc Suite
1 EDB exploit
NA
CVE-2008-3552
Multiple unspecified vulnerabilities in Nokia Series 40 3rd edition FP1, and possibly later devices, allow remote malicious users to execute arbitrary code via unknown vectors, probably related to MIDP privilege escalation and persistent MIDlets, aka "ISSUES 11-15." NOT...
Nokia Series 40
9.8
CVSSv3
CVE-2021-41487
NOKIA VitalSuite SPM 2020 is affected by SQL injection through UserName'.
Nokia Vitalsuite 2020
6.5
CVSSv3
CVE-2023-26057
An XXE issue exists in Nokia NetAct prior to 22 FP2211 via an XML document to the Configuration Dashboard page. Input validation and a proper XML parser configuration are missing. For an external attacker, it is very difficult to exploit this, because a few dynamically created pa...
Nokia Netact 20.1
6.5
CVSSv3
CVE-2023-26058
An XXE issue exists in Nokia NetAct prior to 22 FP2211 via an XML document to a Performance Manager page. Input validation and a proper XML parser configuration are missing. For an external attacker, it is very difficult to exploit this, because a few dynamically created paramete...
Nokia Netact 20.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »