Vulnerabilities (CVE)

Filtered by vendor Nokia Subscribe
Filtered by product Access Management System
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-41763 1 Nokia 1 Access Management System 2024-02-28 N/A 8.8 HIGH
An issue was discovered in NOKIA AMS 9.7.05. Remote Code Execution exists via the debugger of the ipAddress variable. A remote user, authenticated to the AMS server, could inject code in the PING function. The privileges of the command executed depend on the user that runs the service.