Nokia Network Functions Manager For Transport — known CVE vulnerabilities
Every CVE whose affected-product data names Nokia Network Functions Manager For Transport, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2022-39818 — CVSS 8.8 (high): In NOKIA NFM-T R19.9, an OS Command Injection vulnerability occurs in /cgi-bin/R19.9/log.pl of the VM Manager WebUI via the cmd HTTP GET…
CVE-2022-39822 — CVSS 8.8 (high): In NOKIA NFM-T R19.9, a SQL Injection vulnerability occurs in /cgi-bin/R19.9/easy1350.pl of the VM Manager WebUI via the id or host HTTP…
CVE-2022-41761 — CVSS 6.5 (medium): An issue was discovered in NOKIA NFM-T R19.9. An Absolute Path Traversal vulnerability exists under /cgi-bin/R19.9/viewlog.pl of the VM…
CVE-2022-41760 — CVSS 6.5 (medium): An issue was discovered in NOKIA NFM-T R19.9. Relative Path Traversal can occur under /oms1350/data/cpb/log of the Network Element Manager…
CVE-2022-39820 — CVSS 6.5 (medium): In Network Element Manager in NOKIA NFM-T R19.9, an Unprotected Storage of Credentials vulnerability occurs under /root/RestUploadManager.xm…
CVE-2022-41762 — CVSS 6.1 (medium): An issue was discovered in NOKIA NFM-T R19.9. Multiple Reflected XSS vulnerabilities exist in the Network Element Manager via any parameter…
CVE-2022-43675 — CVSS 6.1 (medium): An issue was discovered in NOKIA NFM-T R19.9. Reflected XSS in the Network Element Manager exists via /oms1350/pages/otn/cpbLogDisplay via…