The bootloader in the Nokia ASIK AirScale system module (versions 474021A.101 and 474021A.102) loads public keys for firmware verification signature. If an attacker modifies the flash contents to corrupt the keys, secure boot could be permanently disabled on a given device.
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:HNokia Asik Airscale 474021a.101
HWNokiawszystkie wersjeNokia Asik Airscale 474021a.101 Firmware
OSNokiawszystkie wersjeNokia Asik Airscale 474021a.102
HWNokiawszystkie wersjeNokia Asik Airscale 474021a.102 Firmware
OSNokiawszystkie wersje
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
Related vulnerabilities
CVE-2022-2482HIGH8.4ten sam produkt
A vulnerability exists in Nokia’s ASIK AirScale system module (versions 474021A.101 and 474021A.102) that cou...
CVE-2022-2484HIGH8.4ten sam produkt
The signature check in the Nokia ASIK AirScale system module version 474021A.101 can be bypassed allowing a...
CVE-2025-27019CRITICAL9.8PL ✓ten sam vendor
Nokia Infinera MTC-9: dostęp bez hasła przez usługę RSH umożliwia reverse shell
CVE-2025-27020CRITICAL9.8PL ✓ten sam vendor
Pominięcie uwierzytelnienia SSH w Nokia Infinera MTC-9 umożliwia RCE
CVE-2025-24936CRITICAL9.0PL ✓ten sam vendor
Command injection w Nokia Wavesuite NOC — RCE przez aplikację webową