Known Vulnerabilities for products from Nokia
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Nokia".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Nokia can be found at device.report : Nokia
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-41487 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.8 - CRITICAL | 2022-06-16 | 2022-06-27 |
| CVE-2021-35487 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.5 - MEDIUM | 2022-05-25 | 2022-06-07 |
| CVE-2021-32289 | An issue was discovered in heif through through v3.6.2. A NULL pointer dereference exists in the function convertByteStreamTo... | 5.5 - MEDIUM | 2021-09-20 | 2021-10-02 |
| CVE-2021-32288 | An issue was discovered in heif through v3.6.2. A global-buffer-overflow exists in the function HevcDecoderConfigurationRecor... | 7.8 - HIGH | 2021-09-20 | 2021-10-02 |
| CVE-2021-32287 | An issue was discovered in heif through v3.6.2. A global-buffer-overflow exists in the function HevcDecoderConfigurationRecor... | 7.8 - HIGH | 2021-09-20 | 2021-10-02 |
| CVE-2021-31932 | Nokia BTS TRS web console FTM_W20_FP2_2019.08.16_0010 allows Authentication Bypass. A malicious unauthenticated user can get ... | 9.8 - CRITICAL | 2022-02-11 | 2022-07-12 |
| CVE-2021-30003 | An issue was discovered on Nokia G-120W-F 3FE46606AGAB91 devices. There is Stored XSS in the administrative interface via url... | 4.8 - MEDIUM | 2021-04-02 | 2021-04-07 |
| CVE-2021-26597 | An issue was discovered in Nokia NetAct 18A. A remote user, authenticated to the NOKIA NetAct Web Page, can visit the Site Co... | 6.5 - MEDIUM | 2021-03-25 | 2021-04-01 |
| CVE-2021-26596 | An issue was discovered in Nokia NetAct 18A. A malicious user can change a filename of an uploaded file to include JavaScript... | 5.4 - MEDIUM | 2021-03-25 | 2021-04-01 |
| CVE-2019-17406 | Nokia IMPACT < 18A has path traversal that may lead to RCE if chained with CVE-2019-1743 | 5.3 - MEDIUM | 2019-11-25 | 2019-12-04 |
| CVE-2019-17405 | Nokia IMPACT < 18A: has Reflected self XSS | 6.1 - MEDIUM | 2019-11-25 | 2019-12-04 |
| CVE-2019-17404 | Nokia IMPACT < 18A: allows full path disclosure | 4.3 - MEDIUM | 2019-11-25 | 2019-12-04 |
| CVE-2019-17403 | Nokia IMPACT < 18A: An unrestricted File Upload vulnerability was found that may lead to Remote Code Execution. | 8.8 - HIGH | 2019-11-25 | 2019-12-04 |
| CVE-2019-7386 | A Denial of Service issue has been discovered in the Gecko component of KaiOS 2.5 10.05 (platform 48.0.a2) on Nokia 8810 4G d... | 6.5 - MEDIUM | 2019-03-21 | 2020-08-24 |
| CVE-2019-3922 | The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to a stack buffer overflow via craft... | 9.8 - CRITICAL | 2019-03-05 | 2020-10-19 |
| CVE-2019-3921 | The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to a stack buffer overflow via craft... | 8.8 - HIGH | 2019-03-05 | 2020-10-19 |
| CVE-2019-3920 | The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to authenticated command injection v... | 8.8 - HIGH | 2019-03-05 | 2022-12-03 |
| CVE-2019-3919 | The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to command injection via crafted HTT... | 8.8 - HIGH | 2019-03-05 | 2022-12-03 |
| CVE-2019-3918 | The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 contains multiple hard coded credentials for the T... | 9.8 - CRITICAL | 2019-03-05 | 2022-12-03 |
| CVE-2019-3917 | The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 allows a remote, unauthenticated attacker to enabl... | 7.5 - HIGH | 2019-03-05 | 2020-10-19 |
Known software with vulnerabilities from Nokia
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Nokia | 3210 | - |
| Hardware | Nokia | 6210 Handset | - |
| Application | Nokia | 6310i | - |
| Application | Nokia | 7610 | - |
| Application | Nokia | 9500 | - |
| Application | Nokia | Affix | - |
| Application | Nokia | Electronic Documentation | - |
| Application | Nokia | Ggsn | - |
| Application | Nokia | Groupwise Mobile Server | - |
| Application | Nokia | Impact | 18a |
| Application | Nokia | Intellisync Mobile Suite | - |
| Application | Nokia | Intellisync Wireless Email Express | - |
| Hardware | Nokia | Ip440 Firewall Vpn Appliance | - |
| Operating System | Nokia | Ipso | - |
| Hardware | Nokia | N70 | - |
| Hardware | Nokia | N95 | - |
| Application | Nokia | Pc Suite | 7.1.180.64 |
| Application | Nokia | Qt Creator | 0.9.1 |
| Application | Nokia | Qtdemobrowser | - |
| Application | Nokia | Sgsn Dx200 | - |