CVE-2022-36221

MEDIUM

6.5

Description

Nokia Fastmile 3tg00118abad52 is affected by an authenticated path traversal vulnerability which allows attackers to read any named pipe file on the system.

CVE Details

CVSS v3.1 Score6.5

SeverityMEDIUM

CVSS VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Attack VectorNETWORK

ComplexityLOW

Privileges RequiredLOW

User InteractionNONE

Published12/21/2022

Last Modified4/16/2025

Sourcenvd

Honeypot Sightings0

Affected Products

nokia:fastmilenokia:fastmile_firmware

Weaknesses (CWE)

CWE-22CWE-22

References

https://eddiez.me/hacking-the-nokia-fastmile-pt2/#pipe-path-traversal(cve@mitre.org)

https://eddiez.me/hacking-the-nokia-fastmile-pt2/#pipe-path-traversal(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.