CVE-2025-24330 – “Nokia Single RAN Baseband SOAP Path Traversal Vulnerability”

July 2, 2025

CVE ID : CVE-2025-24330

Published : July 2, 2025, 9:15 a.m. | 27 minutes ago

Description : Sending a crafted SOAP “provision” operation message PlanId field within the Mobile Network Operator (MNO) internal Radio Access Network (RAN) management network can cause path traversal issue in Nokia Single RAN baseband software with versions earlier than release 24R1-SR 1.0 MP. This issue has been corrected to release 24R1-SR 1.0 MP and later.

Beginning with release 24R1-SR 1.0 MP, the OAM service software performed PlanId field input validations mitigate the reported path traversal issue.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-24331 – Nokia Single RAN Root Privilege Escalation Vulnerability

Next Article CVE-2025-24329 – “Nokia Single RAN Baseband SOAP Path Traversal Vulnerability”

Mirantis reveals Lens Prism, an AI copilot for operating Kubernetes clusters

Avoid these common platform engineering mistakes

Full-Stack Techies vs Toptal: Which Is Better for React.js Outsourcing?

The AI productivity paradox in software engineering: Balancing efficiency and human skill retention

Microsoft Gaming studios head Matt Booty says “overall portfolio strategy is unchanged” — with more than 40 games in production

Capcom reports that its Steam game sales have risen massively — despite flagship titles like Monster Hunter Wilds receiving profuse backlash from PC players

Cloudflare is fighting to safeguard “the future of the web itself” — standing directly in the way of leading AI firms

Microsoft reportedly lacks the know-how to fully leverage OpenAI’s tech — despite holding IP rights

PHP 8.5.0 Alpha 1 available for testing

PHP 8.5.0 Alpha 1 available for testing

Recording cross browser compatible media

Celebrating Perficient’s Third Databricks Champion

Microsoft Gaming studios head Matt Booty says “overall portfolio strategy is unchanged” — with more than 40 games in production

Microsoft Gaming studios head Matt Booty says “overall portfolio strategy is unchanged” — with more than 40 games in production

Capcom reports that its Steam game sales have risen massively — despite flagship titles like Monster Hunter Wilds receiving profuse backlash from PC players

Cloudflare is fighting to safeguard “the future of the web itself” — standing directly in the way of leading AI firms

CVE-2025-24330 – “Nokia Single RAN Baseband SOAP Path Traversal Vulnerability”

Critical Lucee Flaw (CVE-2025-34074, CVSS 9.4): Authenticated RCE Via Scheduled Task Abuse, Metasploit Module Out

Exposed JDWP Debug Ports Under Attack: Cryptominers Infiltrating Java Apps in Hours

Kettering Health Hit by Cyberattack: Network Outage and Scam Calls Reported

The rise of AI PCs: How businesses are reshaping their tech to keep up

CVE-2025-48346 – Etsy360 Embed and Integrate Etsy Shop Missing Authorization Vulnerability

No Power Outage, Just a Data One: Nova Scotia Hit by Ransomware Surge

The Front-End Performance Optimization Handbook – Tips and Strategies for Devs

How to Create Partitions in Linux Using fdisk Command

CVE-2025-0325 – Axis Guard Tour VAPIX API Parameter Injection Vulnerability

CVE-2025-3977 – Iteaachyou Dreamer CMS Attachment Handler Remote Authorization Bypass Vulnerability

CVE-2025-24330 – “Nokia Single RAN Baseband SOAP Path Traversal Vulnerability”

Related Posts