Primary

Context

Nokia MantaRay NM OS Command Injection Vulnerability

Vulnerability

An OS command injection vulnerability exists in Nokia MantaRay NM versions prior to 25R1-NM (exclusive). This vulnerability arises from improper handling of special elements in the Symptom Collector application, allowing for malicious manipulation of OS commands.

Impact

Exploitation of this vulnerability allows for OS command injection, where an attacker can execute arbitrary commands on the server running the application.

Remediation

Users can upgrade to MantaRay NM Security Update SU1456 (for 24R2-NM and 24R3-NM) or to version 25R1-NM or later.

Added: Apr 7, 2026, 5:06 PM

Updated: Apr 7, 2026, 5:06 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.5

remediation

0.0

relevance

5.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.5

remediation

0.0

relevance

5.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Nokia MantaRay NM OS Command Injection Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating