CVE-2022-39815 Information

Description

In NOKIA 1350 OMS R14.2 multiple OS Command Injection vulnerabilities occur in /CGI-BIN/OTNE_1-14/runBatch.cgi via the file HTTP POST parameter /CGI-BIN/OTNE_1-14/getRadioTLs.cgi via the context HTTP POST parameter /CGI-BIN/OTNE_1-14/runRouteReport.cgi via the file HTTP POST parameter or /CGI-BIN/RemoteCommandManager.cgi via the command HTTP POST parameter.

Reference

https://www.gruppotim.it/it/footer/red-team.html