CVE-2023-25185

An issue was discovered on NOKIA Airscale ASIKA Single RAN devices before 21B. A mobile network solution internal fault was found in Nokia Single RAN software releases. Certain software processes in the BTS internal software design have unnecessarily high privileges to BTS embedded operating system (OS) resources.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
3.8 LOW
LOCAL
HIGH
HIGH
CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:L/I:L/A:L
mitreCNA
3.8 LOW
LOCAL
HIGH
HIGH
CVSS:3.1/AC:H/AV:L/A:L/C:L/I:L/PR:H/S:U/UI:R
CVEADP
---
---
CISA-ADPADP
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 5%
Common Weakness Enumeration
References
https://Nokia.com
https://www.nokia.com/about-us/security-and-privacy/product-security-advisory/cve-2023-25185/
https://Nokia.com
https://www.nokia.com/about-us/security-and-privacy/product-security-advisory/cve-2023-25185/