VYPR

SR OS

by Nokia

CVEs (2)

  • CVE-2023-6729HigOct 17, 2024
    risk 0.47cvss 7.3epss 0.00

    Nokia SR OS routers allow read-write access to the entire file system via SFTP or SCP for users configured with "access console." Consequently, a low privilege authenticated user with "access console" can read or replace the router configuration file as well as other files…

  • CVE-2023-6728LowOct 17, 2024
    risk 0.21cvss 3.3epss 0.00

    Nokia SR OS bof.cfg file encryption is vulnerable to a brute force attack. This weakness allows an attacker in possession of the encrypted file to decrypt the bof.cfg file and obtain the BOF configuration content.