exploitDog

GHSA-9hp7-prp8-2mg8

Опубликовано: 07 янв. 2026

Источник: github

Github: Не прошло ревью

CVSS3: 6.4

Описание

Nokia SR Linux is vulnerable to an authentication vulnerability allowing unauthorized access to the JSON-RPC service. When exploited, an invalid validation allows JSON RPC access without providing valid authentication credentials.

Nokia SR Linux is vulnerable to an authentication vulnerability allowing unauthorized access to the JSON-RPC service. When exploited, an invalid validation allows JSON RPC access without providing valid authentication credentials.

Ссылки

EPSS

Процентиль: 3%

0.00017

Низкий

6.4 Medium

CVSS3

CVE ID

Дефекты

CWE-284

Связанные уязвимости

CVE-2025-0980

CVSS3: 6.4

nvd

около 1 месяца назад

Nokia SR Linux is vulnerable to an authentication vulnerability allowing unauthorized access to the JSON-RPC service. When exploited, an invalid validation allows JSON RPC access without providing valid authentication credentials.

EPSS

Процентиль: 3%

0.00017

Низкий

6.4 Medium

CVSS3

CVE ID

Дефекты

CWE-284