CVE-2025-9912

Summary

Nokia SR Linux is vulnerable to a local privilege escalation vulnerability. Successful exploitation of this vulnerability may allow an authenticated user to execute arbitrary commands with superuser privilege.

Affected Software

VendorProductVersion RangeStatus
NokiaNokia SR Linux< 23.10.8affected
NokiaNokia SR Linux< 24.10.6affected
NokiaNokia SR Linux< 25.7.2affected
NokiaNokia SR Linux23.10.8unaffected
NokiaNokia SR Linux24.10.6unaffected
NokiaNokia SR Linux25.7.2unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References