Critical Flaw (CVE-2025-24936, CVSS 9.0) in Nokia WaveSuite NOC Expose Telecom Networks to RCE

Nokia’s WaveSuite NOC (WS-NOC) platform—an integral part of network operations for telecom and enterprise environments— exists two severe vulnerabilities, CVE-2025-24938 and CVE-2025-24936, both of which allow attackers to execute arbitrary commands on the underlying operating system. The flaws have been rated with CVSS scores of 8.4 and 9.0 respectively and could be exploited even from low-privileged accounts.

The first vulnerability, CVE-2025-24938, arises from insufficient validation of user input during account creation via the web interface. The flaw allows a high-privileged attacker, such as an administrator, to inject commands directly into the server’s operating system.

“An attacker with high privileged access (administrator) to the application has the potential execute commands on the operating system under the context of the webserver,” the advisory explains.

Since the vulnerable component is bound to the network stack, the attack surface includes anyone on the internet who can access the admin panel—potentially turning a misconfigured deployment into a full-blown security breach.

The second flaw, tracked as CVE-2025-24936, enables command injection via unfiltered URL parameters. Unlike the first flaw, this one can be exploited by low-privileged users, increasing its severity and potential impact.

“An attacker with low privileged access to the application has the potential to execute commands on the operating system under the context of the webserver,” the advisory writes.

Given the reach of the WS-NOC platform across globally deployed telecom environments, this vulnerability presents a significant remote execution threat.

These vulnerabilities were found in WS-NOC versions 23.6, 23.12, and 24.6, and patches are available in version 24.6 FP3 and later.

Related Posts:

• Unpatched Telecom Flaws (CVSS 9.8) Enable Remote Code Execution: Critical Buffer Overflows Expose Core Infrastructure
• Chinese Cyberspies Breach Asian Telecoms in Long-Running Espionage Campaign
• Three-Year Intrusion: SK Telecom Breach Exposes 27 Million User Records