Search

Find a vulnerability

Search criteria

    4 vulnerabilities found for SR OS (7250 IXR, 7450 ESS, 7750 SR, 7950 IXR, VSR), 7705 SAR OS, 7210 SAS OS by Nokia

    CVE-2023-6729 (GCVE-0-2023-6729)

    Vulnerability from nvd – Published: 2024-10-17 12:19 – Updated: 2024-10-17 14:59
    VLAI
    Title
    Nokia SR OS: File Access Security Vulnerability
    Summary
    Nokia SR OS routers allow read-write access to the entire file system via SFTP or SCP for users configured with "access console." Consequently, a low privilege authenticated user with "access console" can read or replace the router configuration file as well as other files stored in the Compact Flash or SD card without using CLI commands. This type of attack can lead to a compromise or denial of service of the router after the system is rebooted.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-732 - Incorrect Permission Assignment for Critical Resource
    Assigner
    Impacted products
    Vendor Product Version
    Nokia SR OS (7250 IXR, 7450 ESS, 7750 SR, 7950 IXR, VSR), 7705 SAR OS, 7210 SAS OS Affected: All supported releases prior to Release 24
    Create a notification for this product.
    nokia service_router_operating_system Affected: 0 , < 24 (custom)
        cpe:2.3:o:nokia:service_router_operating_system:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:o:nokia:service_router_operating_system:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "service_router_operating_system",
                "vendor": "nokia",
                "versions": [
                  {
                    "lessThan": "24",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.3,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "REQUIRED",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-6729",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-17T12:45:34.609859Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-732",
                    "description": "CWE-732 Incorrect Permission Assignment for Critical Resource",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-17T14:59:12.920Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "SR OS (7250 IXR, 7450 ESS, 7750 SR, 7950 IXR, VSR), 7705 SAR OS, 7210 SAS OS",
              "vendor": "Nokia",
              "versions": [
                {
                  "status": "affected",
                  "version": "All supported releases prior to Release 24"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Nokia SR OS routers allow read-write access to the entire file system via SFTP or SCP for users configured with \"access console.\" Consequently, a low privilege authenticated user with \"access console\" can read or replace the router configuration file as well as other files stored in the Compact Flash or SD card without using CLI commands. This type of attack can lead to a compromise or denial of service of the router after the system is rebooted."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-10-17T12:19:19.805Z",
            "orgId": "b48c3b8f-639e-4c16-8725-497bc411dad0",
            "shortName": "Nokia"
          },
          "references": [
            {
              "url": "https://www.nokia.com/about-us/security-and-privacy/product-security-advisory/cve-2023-6729/"
            }
          ],
          "title": "Nokia SR OS: File Access Security Vulnerability",
          "x_generator": {
            "engine": "cveClient/1.0.15"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "b48c3b8f-639e-4c16-8725-497bc411dad0",
        "assignerShortName": "Nokia",
        "cveId": "CVE-2023-6729",
        "datePublished": "2024-10-17T12:19:19.805Z",
        "dateReserved": "2023-12-12T12:43:53.899Z",
        "dateUpdated": "2024-10-17T14:59:12.920Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-6728 (GCVE-0-2023-6728)

    Vulnerability from nvd – Published: 2024-10-17 12:16 – Updated: 2024-11-05 19:32
    VLAI
    Title
    Nokia SR OS: BOF File Encryption Vulnerability
    Summary
    Nokia SR OS bof.cfg file encryption is vulnerable to a brute force attack. This weakness allows an attacker in possession of the encrypted file to decrypt the bof.cfg file and obtain the BOF configuration content.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-326 - Inadequate Encryption Strength
    Assigner
    Impacted products
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "NONE",
                  "baseScore": 3.3,
                  "baseSeverity": "LOW",
                  "confidentialityImpact": "LOW",
                  "integrityImpact": "NONE",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-6728",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-17T15:02:47.474313Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-326",
                    "description": "CWE-326 Inadequate Encryption Strength",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-05T19:32:18.366Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "SR OS (7250 IXR, 7450 ESS, 7750 SR, 7950 IXR, VSR), 7705 SAR OS, 7210 SAS OS",
              "vendor": "Nokia",
              "versions": [
                {
                  "status": "affected",
                  "version": "All supported releases prior to Release 24"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Nokia SR OS bof.cfg file encryption is vulnerable to a brute force attack. This weakness allows an attacker in possession of the encrypted file to decrypt the bof.cfg file and obtain the BOF configuration content."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-10-17T12:16:02.750Z",
            "orgId": "b48c3b8f-639e-4c16-8725-497bc411dad0",
            "shortName": "Nokia"
          },
          "references": [
            {
              "url": "https://www.nokia.com/about-us/security-and-privacy/product-security-advisory/cve-2023-6728/"
            }
          ],
          "title": "Nokia SR OS: BOF File Encryption Vulnerability",
          "x_generator": {
            "engine": "cveClient/1.0.15"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "b48c3b8f-639e-4c16-8725-497bc411dad0",
        "assignerShortName": "Nokia",
        "cveId": "CVE-2023-6728",
        "datePublished": "2024-10-17T12:16:02.750Z",
        "dateReserved": "2023-12-12T12:14:36.041Z",
        "dateUpdated": "2024-11-05T19:32:18.366Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-6729 (GCVE-0-2023-6729)

    Vulnerability from cvelistv5 – Published: 2024-10-17 12:19 – Updated: 2024-10-17 14:59
    VLAI
    Title
    Nokia SR OS: File Access Security Vulnerability
    Summary
    Nokia SR OS routers allow read-write access to the entire file system via SFTP or SCP for users configured with "access console." Consequently, a low privilege authenticated user with "access console" can read or replace the router configuration file as well as other files stored in the Compact Flash or SD card without using CLI commands. This type of attack can lead to a compromise or denial of service of the router after the system is rebooted.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-732 - Incorrect Permission Assignment for Critical Resource
    Assigner
    Impacted products
    Vendor Product Version
    Nokia SR OS (7250 IXR, 7450 ESS, 7750 SR, 7950 IXR, VSR), 7705 SAR OS, 7210 SAS OS Affected: All supported releases prior to Release 24
    Create a notification for this product.
    nokia service_router_operating_system Affected: 0 , < 24 (custom)
        cpe:2.3:o:nokia:service_router_operating_system:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:o:nokia:service_router_operating_system:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "service_router_operating_system",
                "vendor": "nokia",
                "versions": [
                  {
                    "lessThan": "24",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.3,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "REQUIRED",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-6729",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-17T12:45:34.609859Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-732",
                    "description": "CWE-732 Incorrect Permission Assignment for Critical Resource",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-17T14:59:12.920Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "SR OS (7250 IXR, 7450 ESS, 7750 SR, 7950 IXR, VSR), 7705 SAR OS, 7210 SAS OS",
              "vendor": "Nokia",
              "versions": [
                {
                  "status": "affected",
                  "version": "All supported releases prior to Release 24"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Nokia SR OS routers allow read-write access to the entire file system via SFTP or SCP for users configured with \"access console.\" Consequently, a low privilege authenticated user with \"access console\" can read or replace the router configuration file as well as other files stored in the Compact Flash or SD card without using CLI commands. This type of attack can lead to a compromise or denial of service of the router after the system is rebooted."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-10-17T12:19:19.805Z",
            "orgId": "b48c3b8f-639e-4c16-8725-497bc411dad0",
            "shortName": "Nokia"
          },
          "references": [
            {
              "url": "https://www.nokia.com/about-us/security-and-privacy/product-security-advisory/cve-2023-6729/"
            }
          ],
          "title": "Nokia SR OS: File Access Security Vulnerability",
          "x_generator": {
            "engine": "cveClient/1.0.15"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "b48c3b8f-639e-4c16-8725-497bc411dad0",
        "assignerShortName": "Nokia",
        "cveId": "CVE-2023-6729",
        "datePublished": "2024-10-17T12:19:19.805Z",
        "dateReserved": "2023-12-12T12:43:53.899Z",
        "dateUpdated": "2024-10-17T14:59:12.920Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-6728 (GCVE-0-2023-6728)

    Vulnerability from cvelistv5 – Published: 2024-10-17 12:16 – Updated: 2024-11-05 19:32
    VLAI
    Title
    Nokia SR OS: BOF File Encryption Vulnerability
    Summary
    Nokia SR OS bof.cfg file encryption is vulnerable to a brute force attack. This weakness allows an attacker in possession of the encrypted file to decrypt the bof.cfg file and obtain the BOF configuration content.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-326 - Inadequate Encryption Strength
    Assigner
    Impacted products
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "NONE",
                  "baseScore": 3.3,
                  "baseSeverity": "LOW",
                  "confidentialityImpact": "LOW",
                  "integrityImpact": "NONE",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-6728",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-17T15:02:47.474313Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-326",
                    "description": "CWE-326 Inadequate Encryption Strength",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-05T19:32:18.366Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "SR OS (7250 IXR, 7450 ESS, 7750 SR, 7950 IXR, VSR), 7705 SAR OS, 7210 SAS OS",
              "vendor": "Nokia",
              "versions": [
                {
                  "status": "affected",
                  "version": "All supported releases prior to Release 24"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Nokia SR OS bof.cfg file encryption is vulnerable to a brute force attack. This weakness allows an attacker in possession of the encrypted file to decrypt the bof.cfg file and obtain the BOF configuration content."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-10-17T12:16:02.750Z",
            "orgId": "b48c3b8f-639e-4c16-8725-497bc411dad0",
            "shortName": "Nokia"
          },
          "references": [
            {
              "url": "https://www.nokia.com/about-us/security-and-privacy/product-security-advisory/cve-2023-6728/"
            }
          ],
          "title": "Nokia SR OS: BOF File Encryption Vulnerability",
          "x_generator": {
            "engine": "cveClient/1.0.15"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "b48c3b8f-639e-4c16-8725-497bc411dad0",
        "assignerShortName": "Nokia",
        "cveId": "CVE-2023-6728",
        "datePublished": "2024-10-17T12:16:02.750Z",
        "dateReserved": "2023-12-12T12:14:36.041Z",
        "dateUpdated": "2024-11-05T19:32:18.366Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }