CVE-2025-24816

Summary

Nokia MantaRay is subject to an Improper Access Control vulnerability due to insufficient authorization within the API. Successful exploitation could allow an authenticated attacker to retrieve confidential information beyond their assigned privileges.

Affected Software

VendorProductVersion RangeStatus
NokiaMantaRay NM<25R2-NMaffected
NokiaMantaRay NM≥25R2-NMunaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References