CVE Catalog

CVE-2025-10262

MediumCVSS 6.3
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.15%

5th percentile — higher than 5% of all known CVEs

Summary

Nokia SR Linux is vulnerable to local privilege escalation vulnerability due to unsanitized format validation. Successful exploitation of this vulnerability may allow an authenticated user to execute arbitrary commands with superuser privileges.

Risk Assessment

Exploitation of this vulnerability could lead to serious security breaches, allowing unauthorized actions by users with superuser privileges.

Recommendation

It is recommended to update the software to the latest version to mitigate this vulnerability and implement additional access control measures.

Original NVD description (English source)

Nokia SR Linux is vulnerable to local privilege escalation vulnerability due to unsanitized format validation. Successful exploitation of this vulnerability may allow an authenticated user to execute arbitrary commands with superuser privileges.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS