CVE-2025-24817
An OS Command Injection vulnerability in Nokia MantaRay NM
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 8EPSS 1.0%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
07 Apr 2026Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Nokia MantaRay NM is vulnerable to an OS command injection vulnerability due to improper neutralization of special elements used in an OS command in Symptom Collector application.
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected products
Nokia · MantaRay NMWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →