Security Advisory

CVE-2022-39818

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-12-25 00:00:00

Last updated 2024-08-03 12:07:42

Assigner mitre

State PUBLISHED

Description

In NOKIA NFM-T R19.9, an OS Command Injection vulnerability occurs in /cgi-bin/R19.9/log.pl of the VM Manager WebUI via the cmd HTTP GET parameter. This allows authenticated users to execute commands, with root privileges, on the operating system.

← Browse all CVEs View on cve.org ↗