Description
Nokia Broadcast Message Center (BMC) before 13.1 allows an unauthenticated remote attacker to do OS command injection as root via shell metacharacters in the Log Scanner Search Pattern field.
Published: 2026-05-08
Score: 6.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is an OS command injection flaw that permits the execution of arbitrary shell commands with root privileges. It arises from unsanitized input in the Log Scanner Search Pattern field, allowing shell metacharacters to be interpreted by the underlying operating system. An attacker who exploits this flaw can compromise confidentiality, integrity, and availability by gaining full control of the affected device.

Affected Systems

Nokia Broadcast Message Center devices running any version prior to 13.1 are vulnerable. Users of these earlier releases should verify if they are running the affected software and plan to move to a version newer than 13.1.

Risk and Exploitability

The flaw is exploitable without authentication and requires network access to the Log Scanner interface. The CVSS score of 6.5 indicates moderate severity, while the EPSS score of <1% indicates a very low likelihood of exploitation. The vulnerability is not listed in CISA’s KEV catalog. Exploitation would involve supplying a crafted Log Scanner Search Pattern containing shell metacharacters that the system executes with root privileges.

Generated by OpenCVE AI on May 8, 2026 at 21:36 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Obtain and apply the official Nokia patch or upgrade to a release newer than 13.1.
  • Restrict network access to the Log Scanner Search Pattern interface by configuring firewall rules or network segmentation to limit exposure to trusted sources.
  • Implement input validation or a web application firewall that rejects or sanitizes shell metacharacters in the Log Scanner Search Pattern field to prevent injection attempts.

Generated by OpenCVE AI on May 8, 2026 at 21:36 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 08 May 2026 22:00:00 +0000

Type Values Removed Values Added
Title Nokia BMC Root Privilege OS Command Injection via Log Scanner Input

Fri, 08 May 2026 20:00:00 +0000

Type Values Removed Values Added
Title Unauthenticated OS Command Injection in Nokia Broadcast Message Center Log Scanner
Weaknesses CWE-94

Fri, 08 May 2026 14:15:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 08 May 2026 08:00:00 +0000

Type Values Removed Values Added
First Time appeared Nokia
Nokia broadcast Message Center
Vendors & Products Nokia
Nokia broadcast Message Center

Fri, 08 May 2026 07:15:00 +0000

Type Values Removed Values Added
Title Unauthenticated OS Command Injection in Nokia Broadcast Message Center Log Scanner
Weaknesses CWE-78
CWE-94

Fri, 08 May 2026 05:00:00 +0000

Type Values Removed Values Added
Description Nokia Broadcast Message Center (BMC) before 13.1 allows an unauthenticated remote attacker to do OS command injection as root via shell metacharacters in the Log Scanner Search Pattern field.
References

Subscriptions

Nokia Broadcast Message Center
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2026-05-08T13:48:07.147Z

Reserved: 2022-11-26T00:00:00.000Z

Link: CVE-2022-45899

cve-icon Vulnrichment

Updated: 2026-05-08T13:48:02.968Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-08T05:16:09.183

Modified: 2026-05-08T16:02:14.343

Link: CVE-2022-45899

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-08T21:45:18Z

Weaknesses