Nokia Single RAN Administrative Shell Injection Vulnerability
Vulnerability
A shell injection vulnerability has been identified in Nokia Single RAN baseband software versions prior to 24R1-SR 1.0 MP. This vulnerability arises from an input validation flaw that allows authenticated administrative users to inject arbitrary commands. The injected commands could be executed by an unprivileged baseband OAM service process, using special characters added to the internal COMA_config.xml file. The vulnerability is not exploitable from external sources such as user devices, roaming networks, or the Internet, and has not been observed to have a practical exploit.
Impact
Exploitation of this vulnerability could allow an authenticated administrative user to inject commands that are executed by an unprivileged baseband OAM service process, potentially leading to unauthorized actions within the baseband management environment.
Remediation
Users can upgrade to Nokia Single RAN baseband software version 24R1-SR 1.0 MP or later to address this vulnerability.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.