7.8
CVE-2025-24815
- EPSS 0.15%
- Veröffentlicht 30.06.2026 08:55:42
- Zuletzt bearbeitet 30.06.2026 14:23:38
- Quelle b48c3b8f-639e-4c16-8725-497bc4
- CVE-Watchlists
- Unerledigt
An unrestricted file upload vulnerability in Nokia MantaRay NM
Nokia MantaRay NM is subject to an unrestricted file upload vulnerability due to insufficient file type validation. Successful exploitation could allow an authenticated attacker to upload malicious files onto the system.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerNokia
≫
Produkt
MantaRay NM
Version
<25R2-NM
Status
affected
Version
≥25R2-NM
Status
unaffected
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.15% | 0.046 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-434 Unrestricted Upload of File with Dangerous Type
The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.
https://www.nokia.com/we-are-nokia/security/product-security-advisory/cve-2025-24815/