CVE-2023-25189 Information

Description

BTS is affected by information disclosure vulnerability where mobile network operator personnel connected over BTS Web Element Manager regardless of the access privileges having a possibility to read BTS service operation details performed by Nokia Care service personnel via SSH.

Reference

https://www.nokia.com/about-us/security-and-privacy/product-security-advisory/cve-2023-25189/