CVE-2025-24817 PUBLISHED

An OS Command Injection vulnerability in Nokia MantaRay NM

Assigner: Nokia
Reserved: 24.01.2025 Published: 07.04.2026 Updated: 07.04.2026

Nokia MantaRay NM is vulnerable to an OS command injection vulnerability due to improper neutralization of special elements used in an OS command in Symptom Collector application.

Product Status

Vendor	Nokia
Product	MantaRay NM
Versions	Default: affected Version Earlier than 25R1-NM (exclusive) is affected

References

https://www.nokia.com/we-are-nokia/security/product-security-advisory/cve-2025-24817/