CVE-2025-10262

Summary

Nokia SR Linux is vulnerable to local privilege escalation vulnerability due to unsanitized format validation. Successful exploitation of this vulnerability may allow an authenticated user to execute arbitrary commands with superuser privileges.

Affected Software

VendorProductVersion RangeStatus
NokiaSR Linux< 23.10.8affected
NokiaSR Linux< 24.10.6affected
NokiaSR Linux< 25.7.2affected
NokiaSR Linux23.10.8unaffected
NokiaSR Linux24.10.6unaffected
NokiaSR Linux25.7.2unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References