Security Advisory

CVE-2021-35485

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-03 00:00:00

Last updated 2026-03-04 15:49:10

Assigner mitre

State PUBLISHED

Description

The Applications component of Nokia IMPACT version through 19.11.2.10-20210118042150283 allows an authenticated user to arbitrarily upload server-side executable files via the /ui/rest-proxy/application fileupload parameter. This can occur during the adding of a new application, or during the editing of an existing one.

← Browse all CVEs View on cve.org ↗