Full Report
Nokia security advisory (AV26-302)
Analysis Summary
# Vulnerability: Nokia GX Series CLI Access Control List (ACL) Bypass
## CVE Details
- **CVE ID:** CVE-2026-34485
- **CVSS Score:** Not explicitly rated in the summary, but typically "High" for ACL bypasses.
- **CWE:** CWE-284: Improper Access Control (Access Control List Bypass)
## Affected Systems
- **Products:** Nokia GX Series (G42, G31, G32, G34)
- **Versions:** All firmware versions prior to GX r9.0
- **Configurations:** Systems utilizing Command Line Interface (CLI) Access Control Lists for management security.
## Vulnerability Description
CVE-2026-34485 describes a logic flaw within the Command Line Interface (CLI) of Nokia GX series devices. The vulnerability allows an attacker to bypass configured Access Control Lists (ACLs). This effectively permits unauthorized users to execute administrative commands or access restricted configuration areas that should have been blocked by the established security policies.
## Exploitation
- **Status:** Unknown/Not specified (Typically treated as "Not exploited" at time of initial advisory release).
- **Complexity:** Low to Medium.
- **Attack Vector:** Network (Remote access to the CLI management interface).
## Impact
- **Confidentiality:** High (Access to system configurations and sensitive data).
- **Integrity:** High (Unauthorized modification of device settings).
- **Availability:** High (Potential to disrupt service via administrative commands).
## Remediation
### Patches
- **Update to Version GX r9.0** or later. Nokia has released this firmware version specifically to address the ACL bypass logic flaw.
### Workarounds
- **Management Plane Isolation:** Restrict access to the CLI/management interface to trusted management networks (OOBM) only using external firewalls.
- **Service Disabling:** If the CLI is not required for daily operations, disable SSH/Telnet services until the patch is applied.
## Detection
- **Audit Logs:** Monitor management logs for successful CLI logins from IP addresses not explicitly authorized in the internal ACLs.
- **Configuration Verification:** Regularly audit device configurations to ensure no unauthorized changes have been made to user accounts or network settings.
## References
- **Nokia Security Advisory:** hxxps[://]www[.]nokia[.]com/we-are-nokia/security/product-security-advisory/cve-2026-34485/
- **Nokia General Advisory Portal:** hxxps[://]www[.]nokia[.]com/we-are-nokia/security/product-security-advisory/
- **CCCS Advisory:** hxxps[://]www[.]cyber[.]gc[.]ca/en/alerts-advisories/nokia-security-advisory-av26-302