CVE-2025-24330 – “Nokia Single RAN Baseband SOAP Path Traversal Vulnerability”

July 2, 2025

CVE ID : CVE-2025-24330

Published : July 2, 2025, 9:15 a.m. | 27 minutes ago

Description : Sending a crafted SOAP “provision” operation message PlanId field within the Mobile Network Operator (MNO) internal Radio Access Network (RAN) management network can cause path traversal issue in Nokia Single RAN baseband software with versions earlier than release 24R1-SR 1.0 MP. This issue has been corrected to release 24R1-SR 1.0 MP and later.

Beginning with release 24R1-SR 1.0 MP, the OAM service software performed PlanId field input validations mitigate the reported path traversal issue.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-24331 – Nokia Single RAN Root Privilege Escalation Vulnerability

Next Article CVE-2025-24329 – “Nokia Single RAN Baseband SOAP Path Traversal Vulnerability”

10 Ways Node.js Development Boosts AI & Real-Time Data (2025-2026 Edition)

Looking to Outsource React.js Development? Here’s What Top Agencies Are Doing Right

Beyond The Hype: What AI Can Really Do For Product Design

BrowserStack launches Chrome extension that bundles 10+ manual web testing tools

How much RAM does your Linux PC really need in 2025?

Have solar at home? Supercharge that investment with this other crucial component

I replaced my MacBook charger with this compact wall unit – and wish I’d done it sooner

5 reasons to switch to an immutable Linux distro today – and which to try first

Sentry Adds Logs Support for Laravel Apps

Sentry Adds Logs Support for Laravel Apps

Efficient Context Management with Laravel’s Remember Functions

Laravel Devtoolbox: Your Swiss Army Knife Artisan CLI

From plateau predictions to buggy rollouts — Bill Gates’ GPT-5 skepticism looks strangely accurate

From plateau predictions to buggy rollouts — Bill Gates’ GPT-5 skepticism looks strangely accurate

We gave OpenAI’s open-source AI a kid’s test — here’s what happened

With GTA 6, next-gen exclusives, and a console comeback on the horizon, Xbox risks sitting on the sidelines — here’s why

CVE-2025-24330 – “Nokia Single RAN Baseband SOAP Path Traversal Vulnerability”

Workday Staff Fall to Social Engineering; Hackers Access Third-Party CRM Platform

Get Ready for the Black Hat USA 2025 CISO Podcast Series from The Cyber Express and Suraksha Catalyst

CVE-2025-7195 – Operator-SDK Insecure User Setup Permissions Vulnerability

Microsoft might kill the Surface Laptop Studio as production is quietly halted

CVE-2025-38164 – VirtualBox F2FS Inconsistent Segment Type

CVE-2016-15044 – Kaltura Remote Code Execution Vulnerability

The latest KB5055612 for Windows 10 22H2 brings huge stability to the OS

CVE-2025-5141 – Fortra Core Privileged Access Manager BoKS Server Agent Information Disclosure Vulnerability

CERT-UA Discovers LAMEHUG Malware Linked to APT28, Using LLM for Phishing Campaign

Dune: Awakening hits a concurrent player milestone before the game officially launches — overtaking DOOM, Veilguard, Assassin’s Creed, and other major titles

CVE-2025-24330 – “Nokia Single RAN Baseband SOAP Path Traversal Vulnerability”

Related Posts