CVE-2025-24333 – Nokia Single RAN Baseband Administrative Shell Command Injection Vulnerability

July 2, 2025

CVE ID : CVE-2025-24333

Published : July 2, 2025, 9:15 a.m. | 27 minutes ago

Description : Nokia Single RAN baseband software earlier than 24R1-SR 1.0 MP contains administrative shell input validation fault, which authenticated admin user can, in theory, potentially use for injecting arbitrary commands for unprivileged baseband OAM service process execution via special characters added to baseband internal COMA_config.xml file.

This issue has been corrected starting from release 24R1-SR 1.0 MP and later, by adding proper input validation to OAM service process which prevents injecting special characters via baseband internal COMA_config.xml file.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-24334 – Nokia Single RAN Baseband Software Information Disclosure Vulnerability

Next Article CVE-2025-24332 – Nokia Single RAN AirScale Baseband SSH Privilege Escalation

A Week In The Life Of An AI-Augmented Designer

This week in AI updates: Gemini Code Assist Agent Mode, GitHub’s Agents panel, and more (August 22, 2025)

Microsoft adds Copilot-powered debugging features for .NET in Visual Studio

Blackstone portfolio company R Systems Acquires Novigo Solutions, Strengthening its Product Engineering and Full-Stack Agentic-AI Capabilities

I found the ultimate MacBook Air alternative for Windows users – and it’s priced well

Outdated IT help desks are holding businesses back – but there is a solution

Android’s latest update can force apps into dark mode – how to see it now

I tried the Google Pixel Watch 4 – and these key features made it feel indispensable

Building Cross-Platform Alerts with Laravel’s Notification Framework

Building Cross-Platform Alerts with Laravel’s Notification Framework

Add Notes Functionality to Eloquent Models With the Notable Package

How to install OpenPlatform — IoT platform

Basics of Digital Forensics

Basics of Digital Forensics

Top Linux Server Automation Tools: Simplifying System Administration

Rising from the Ashes: How AlmaLinux and Rocky Linux Redefined the Post-CentOS Landscape

CVE-2025-24333 – Nokia Single RAN Baseband Administrative Shell Command Injection Vulnerability

“What happens online stays online” and other cyberbullying myths, debunked

The need for speed: Why organizations are turning to rapid, trustworthy MDR

Hinex ST: Vanilla Powder Buy 400 gm Teen Online

Apartment dwellers, rejoice! This tiny robot and handheld vacuum combo surprised me

I traveled 13,528 miles with these Snapdragon-powered laptops — Three key things make them ideal for trips

Team46 (TaxOff) Exploits Google Chrome Zero-Day (CVE-2025-2783) in Sophisticated Phishing Campaign

CVE-2025-1348 – IBM Sterling B2B Integrator and IBM Sterling File Gateway Information Disclosure Vulnerability

CVE-2025-31328 – SAP Learning Solution CSRF Vulnerability

Learn to Build a Multilayer Perceptron with Real-Life Examples and Python Code

AREAL: Accelerating Large Reasoning Model Training with Fully Asynchronous Reinforcement Learning

CVE-2025-24333 – Nokia Single RAN Baseband Administrative Shell Command Injection Vulnerability

Related Posts