CVE-2023-25185

Published Jun 16, 2023

Last updated 2 months ago

CVSS low 3.8

Overview

Description: An issue was discovered on NOKIA Airscale ASIKA Single RAN devices before 21B. A mobile network solution internal fault was found in Nokia Single RAN software releases. Certain software processes in the BTS internal software design have unnecessarily high privileges to BTS embedded operating system (OS) resources.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.8
Impact score: 5.9
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH

Weaknesses

nvd@nist.gov: CWE-269
134c704f-9b21-4f2e-91b3-4a467353bcc0: CWE-863

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:nokia:asika_airscale_firmware:19b:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FE8E3A0E-3B21-49D8-A4EE-33FE5FBA7B51"
          },
          {
            "criteria": "cpe:2.3:o:nokia:asika_airscale_firmware:20a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A612E565-7686-4C20-99AF-67B283328A42"
          },
          {
            "criteria": "cpe:2.3:o:nokia:asika_airscale_firmware:20b:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5AE52024-F5EE-42F6-AC3A-702E87B1ABF2"
          },
          {
            "criteria": "cpe:2.3:o:nokia:asika_airscale_firmware:20c:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DA68A71E-A8FB-4448-BE75-318E4582FC43"
          },
          {
            "criteria": "cpe:2.3:o:nokia:asika_airscale_firmware:21a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B2FAA373-A46D-48A6-8A08-F66F4F3604C7"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:nokia:asika_airscale:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "61C0B724-C7EA-4214-98CF-49812292332B"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References