Mohamed Amine Ouad

**Name of the Vulnerable Software and Affected Versions** Ericsson Mobile Switching Center Server (MSC-S) versions BC 18A and IS 3.1 through IS 3.1 CP21 **Description** The issue allows relative path traversal via a specific parameter in the https request after authentication, which enables access to files on the system that are not intended to be accessible via the web application. **Recommendations** For Ericsson Mobile Switching Center Server (MSC-S) versions BC 18A and IS 3.1 through IS 3.1 CP21, update to IS 3.1 CP22 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Ericsson Network Manager versions prior to 21.2 **Description** The issue allows users belonging to the same AMOS authorization group to retrieve data from certain log files, potentially leading to privilege escalation. All AMOS users are considered highly privileged in the ENM system and must be previously defined and authorized by the Security Administrator. These users can access log files under a common path and read stored information to conduct privilege escalation. **Recommendations** For versions prior to 21.2, consider restricting access to log files under the common path to minimize the risk of exploitation. As a temporary workaround, limit the privileges of AMOS users to prevent them from accessing sensitive information in the log files. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Ericsson Network Manager versions prior to 21.2 **Description** The issue concerns incorrect access-control behavior, affecting users with highly privileged roles. It allows users within the same AMOS authorization group to retrieve managed-network data not intended for their access, specifically data restricted to a subset of the group. **Recommendations** For Ericsson Network Manager versions prior to 21.2, update to version 21.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** OSS-RC systems versions 18B and older **Description** The issue affects customer documentation browsing libraries under ALEX in OSS-RC systems, making them subject to Cross-Site Scripting. This problem is resolved in the new Ericsson library browsing tool ELEX used in systems like Ericsson Network Manager. The vulnerability only affects products that are no longer supported by the maintainer. **Recommendations** For OSS-RC systems versions 18B and older, upgrade to Ericsson Network Manager, which is a new generation OSS system and includes the resolved issue in its new library browsing tool ELEX.

**Name of the Vulnerable Software and Affected Versions** OSS-RC versions 18B and older **Description** The issue affects OSS-RC systems during data migration procedures, where files containing `usernames` and `passwords` are left undeleted in folders accessible by top privileged accounts only. This issue only affects products that are no longer supported by the maintainer. It is recommended that OSS-RC customers upgrade to Ericsson Network Manager, a new generation OSS system. **Recommendations** For OSS-RC versions 18B and older, consider upgrading to Ericsson Network Manager to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.