CVE-2022-2482

HIGH Year: 2022
CVSS v3 Score
8.8
High
Weakness Type
CWE-1274
View all →

Vulnerability Description

A vulnerability exists in Nokia’s ASIK AirScale system module (versions 474021A.101 and 474021A.102) that could allow an attacker to place a script on the file system accessible from Linux. A script placed in the appropriate place could allow for arbitrary code execution in the bootloader.

Related Vulnerabilities

CVE-2022-2484

HIGH
CVSS:7.8(High)

The signature check in the Nokia ASIK AirScale system module version 474021A.101 can be bypassed allowing an attacker to run modified firmware. This could result in the execution of a malicious kernel...

CWE-12742022

CVE-2022-2484

HIGH
CVSS:7.8(High)

The signature check in the Nokia ASIK AirScale system module version 474021A.101 can be bypassed allowing an attacker to run modified firmware. This could result in the execution of a malicious kernel...

CWE-12742022

CVE-2025-4043

MEDIUM
CVSS:6.8(Medium)

An admin user can gain unauthorized write access to the /etc/rc.local file on the device, which is executed on a system boot.

CWE-12742025