High severity7.5NVD Advisory· Published Apr 22, 2024· Updated Apr 15, 2026
CVE-2022-35503
CVE-2022-35503
Description
Improper verification of a user input in Open Source MANO v7-v12 allows an authenticated attacker to execute arbitrary code within the LCM module container via a Virtual Network Function (VNF) descriptor. An attacker may be able execute code to change the normal execution of the OSM components, retrieve confidential information, or gain access other parts of a Telco Operator infrastructure other than OSM itself.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: >= v7, <= v12
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.