CNNVD-202507-121 Information

CNNVD ID

CNNVD-202507-121

Related CVE

CVE-2025-24330

• CNNVD Published: 2025-07-02

Description (Chinese)

Nokia Single RAN是芬兰诺基亚（Nokia）公司的一个无线网络技术。 Nokia Single RAN 24R1-SR 1.0 MP之前版本存在安全漏洞，该漏洞源于未对MNO内部RAN管理网络中SOAP provision操作消息的PlanId字段进行输入验证，容易受到路径遍历攻击。

Description (English)

Nokia Single RAN is a wireless network technology for Nokia in Finland. Nokia Single RAN 24R1-SR 1.0 MP had a security loophole, which stemmed from the lack of input validation of the Planid field of the SOAP operation in the MNO internal RAN management network and was vulnerable to routing attacks.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Nomysoft Informatics

Published

2025-07-02

Last Modified

2026-02-24

References

https://www.nokia.com/about-us/security-and-privacy/product-security-advisory/cve-2025-24330/

Patch

https://www.nokia.com/about-us/security-and-privacy/product-security-advisory/cve-2025-24328/