CVE-2025-10262 PUBLISHED

An unsanitized format validation vulnerability in Nokia SR Linux

Assigner: Nokia
Reserved: 11.09.2025 Published: 16.06.2026 Updated: 16.06.2026

Nokia SR Linux is vulnerable to local privilege escalation vulnerability due to unsanitized format validation. Successful exploitation of this vulnerability may allow an authenticated user to execute arbitrary commands with superuser privileges.

Product Status

Vendor	Nokia
Product	SR Linux
Versions	Default: affected Version < 23.10.8 is affected Version < 24.10.6 is affected Version < 25.7.2 is affected

Vendor	Nokia
Product	SR Linux
Versions	Default: unaffected Version 23.10.8 is unaffected Version 24.10.6 is unaffected Version 25.7.2 is unaffected

References

Nokia Product Security Advisory