CVE-2022-46408 (network_manager)

Ericsson Network Manager (ENM), versions prior to 22.1, contains a vulnerability in the application Network Connectivity Manager (NCM) where improper Neutralization of Formula Elements in a CSV File can lead to remote code execution or data leakage via maliciously injected hyperlinks. The attacker would need admin/elevated access to exploit the vulnerability.

access application code code execution connectivity csv cve data data leakage ericsson ericsson network manager exploit file manager network network connectivity remote code remote code execution vulnerability