本ページは nokia impact に影響する公開済み CVE(NVD の CPE 経由で関連付け)を列挙します。各行に深刻度指標・概要・公開日が含まれます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2021-35485 | The Applications component of Nokia IMPACT version through 19.11.2.10-20210118042150283 allows an authenticated user to arbitrarily upload server-side executable files via the /ui/rest-proxy/application fileupload parameter. This can occur during the adding of a new application, or during the editing of an existing one. | [email protected] | 8.0 | 0.23% | 2026-03-03 | 2026-06-16 |
| CVE-2021-35484 | Nokia IMPACT through 19.11.2.10-20210118042150283 allows an authenticated user to perform a Time-based Boolean Blind SQL Injection attack on the endpoint /ui/rest-proxy/campaign/statistic (for the View Campaign page) via the sortColumn HTTP GET parameter. This allows an attacker to access sensitive data from the database and obtain access to the database user, database name, and database version information. | [email protected] | 8.2 | 0.24% | 2026-03-03 | 2026-06-16 |
| CVE-2021-35483 | The Applications component of Nokia IMPACT version through 19.11.2.10-20210118042150283 allows an authenticated user to arbitrarily upload JavaScript files via the /ui/rest-proxy/application fileupload parameter. This can occur during the adding of a new application, or during the editing of an existing one. If an authenticated user visits the web page where the file is published, the JavaScript code is executed. | [email protected] | 4.1 | 0.22% | 2026-03-03 | 2026-06-16 |
| CVE-2019-17406 | Nokia IMPACT < 18A has path traversal that may lead to RCE if chained with CVE-2019-1743 | [email protected] | 5.3 | 1.12% | 2019-11-25 | 2026-06-16 |
| CVE-2019-17405 | Nokia IMPACT < 18A: has Reflected self XSS | [email protected] | 6.1 | 0.71% | 2019-11-25 | 2026-06-16 |
| CVE-2019-17404 | Nokia IMPACT < 18A: allows full path disclosure | [email protected] | 4.3 | 0.97% | 2019-11-25 | 2026-06-16 |
| CVE-2019-17403 | Nokia IMPACT < 18A: An unrestricted File Upload vulnerability was found that may lead to Remote Code Execution. | [email protected] | 8.8 | 2.54% | 2019-11-25 | 2026-06-16 |