CVE-2022-2483

Name of the Vulnerable Software and Affected Versions Nokia ASIK AirScale system module versions 474021A.101 through 474021A.102

Description The bootloader in the Nokia ASIK AirScale system module loads public keys for firmware verification signature. If an attacker modifies the flash contents to corrupt the keys, secure boot could be permanently disabled on a given device.

Recommendations For versions 474021A.101 and 474021A.102, update to a version that includes a fix for the secure boot issue to prevent permanent disablement. As a temporary workaround, consider restricting access to the flash contents to minimize the risk of exploitation.