Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Nokia Impact before Mobile 23_FP1. In Impact DM 19.11 onwards, a remote authenticated user, using the Add Campaign functionality, can inject a malicious payload within the Campaign Name. This data can be exported to a CSV file. Attackers can populate data fields that may attempt data exfiltration or other malicious activity when automatically executed by the spreadsheet software.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:N/A:N
Vulnerability Type
N/A
Vulnerability Title
Nokia Impact Mobile 安全漏洞
Vulnerability Description
Nokia Impact Mobile是芬兰诺基亚(Nokia)公司的一套移动网络设备管理与自动化运维平台。 Nokia Impact Mobile 23_FP1之前版本存在安全漏洞,该漏洞源于Add Campaign功能中Campaign Name参数可注入恶意有效载荷,可能导致数据渗漏。
CVSS Information
N/A
Vulnerability Type
N/A