cvedb.io
CVE-2023-26062
HIGH · CVSS 7
EPSS exploitation probability: 0%
Published 2023-06-14T20:15:09.383 · Last modified 2026-06-17T05:42:34.753

Summary

A mobile network solution internal fault is found in Nokia Web Element Manager before 22 R1, in which an authenticated, unprivileged user can execute administrative functions. Exploitation is not possible from outside of mobile network solution architecture. This means that exploit is not possible from mobile network user UEs, from roaming networks, or from the Internet. Exploitation is possible only from a CSP (Communication Service Provider) mobile network solution internal BTS management network.

Affected products

nokia — web_element_manager

Does this affect you?

Add your gear to cvedb and we'll alert you only when nokia ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.