CVE-2025-7406
HIGHCVSS v3.1: 7.8 · EPSS: 0.0017 (6.6 percentile)
Source data as of:
At a glance
- Severity
- HIGH
- CVSS
- 7.8 v3.1 · NVD
- EPSS
- 0.0017 (6.6 percentile) · FIRST.org
- CISA KEV
- No
- Type
- Privilege Management · NVD CWE
- Attack conditions (CVSS vector)
- No user interaction · Source: NVD Vector
- Published
- 2026-06-30 · Modified: 2026-06-30
- References
- Jump to references (1)
CVSS / EPSS / KEV
Source — CVSS: NVD · EPSS: FIRST.org · KEV: CISA. Data & Sources
Description
Nokia MantaRay NM is vulnerable to a sudo privilege escalation vulnerability where a local attacker possessing administrative (local admin) privileges can escalate to full root privileges on the host. Successful exploitation results in root-level access to the filesystem and the ability to execute actions as root. The risk can be temporarily mitigated by restricting the set of commands permitted via sudo for the affected accounts.
References
Reference URLs as listed by NVD, grouped by a mechanical match on the link's host/pattern. Labels describe the link type only.