CVE Catalog

CVE-2025-24815

HighCVSS 7.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.18%

7th percentile — higher than 7% of all known CVEs

Summary

Nokia MantaRay NM is subject to an unrestricted file upload vulnerability due to insufficient file type validation. Successful exploitation could allow an authenticated attacker to upload malicious files onto the system.

Risk Assessment

The risk involves an attacker uploading malicious software, potentially leading to system compromise, data theft, or further attack escalation within the network.

Recommendation

Immediately update Nokia MantaRay NM to the latest patched version and implement additional file type validation at the application level.

Original NVD description (English source)

Nokia MantaRay NM is subject to an unrestricted file upload vulnerability due to insufficient file type validation. Successful exploitation could allow an authenticated attacker to upload malicious files onto the system.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS