CVE-2025-10262
MediumCVSS 6.3Exploitation Probability (EPSS)
Low risk5th percentile — higher than 5% of all known CVEs
Summary
Nokia SR Linux is vulnerable to local privilege escalation vulnerability due to unsanitized format validation. Successful exploitation of this vulnerability may allow an authenticated user to execute arbitrary commands with superuser privileges.
Risk Assessment
Exploitation of this vulnerability could lead to serious security breaches, allowing unauthorized actions by users with superuser privileges.
Recommendation
It is recommended to update the software to the latest version to mitigate this vulnerability and implement additional access control measures.
Original NVD description (English source)
Nokia SR Linux is vulnerable to local privilege escalation vulnerability due to unsanitized format validation. Successful exploitation of this vulnerability may allow an authenticated user to execute arbitrary commands with superuser privileges.

