Vulnerability Description: Relative Path Traversal - CWE-23
Software Version: All MantaRay NM versions earlier than 25R1-NM
NIST: https://nvd.nist.gov/vuln/detail/CVE-2025-24819
CVSS:
Severity:
Credits: Andrea Carlo Maria Dattola, Cristina Coppola, Carlo Pannullo, Massimiliano Brolli
Nokia MantaRay NM is vulnerable to a Relative Path Traversal vulnerability due to improper validation of input parameter on the file system in Software Manager application.
Security Impact
Exploiting this vulnerability on the web portal it was possible to read the files (like sensitive information) on the filesystem.