{
    "dataType": "CVE_RECORD",
    "dataVersion": "5.1",
    "cveMetadata": {
        "cveId": "CVE-2023-6728",
        "assignerOrgId": "b48c3b8f-639e-4c16-8725-497bc411dad0",
        "state": "PUBLISHED",
        "assignerShortName": "Nokia",
        "dateReserved": "2023-12-12T12:14:36.041Z",
        "datePublished": "2024-10-17T12:16:02.750Z",
        "dateUpdated": "2024-10-17T15:02:54.456Z"
    },
    "containers": {
        "cna": {
            "title": "Nokia SR OS: BOF File Encryption Vulnerability",
            "descriptions": [
                {
                    "lang": "en",
                    "value": "Nokia SR OS bof.cfg file encryption is vulnerable to a brute force attack. This weakness allows an attacker in possession of the encrypted file to decrypt the bof.cfg file and obtain the BOF configuration content."
                }
            ],
            "affected": [
                {
                    "vendor": "Nokia",
                    "product": "SR OS (7250 IXR, 7450 ESS, 7750 SR, 7950 IXR, VSR), 7705 SAR OS, 7210 SAS OS",
                    "versions": [
                        {
                            "version": "All supported releases prior to Release 24",
                            "status": "affected"
                        }
                    ]
                }
            ],
            "references": [
                {
                    "url": "https://www.nokia.com/about-us/security-and-privacy/product-security-advisory/cve-2023-6728/"
                }
            ],
            "providerMetadata": {
                "orgId": "b48c3b8f-639e-4c16-8725-497bc411dad0",
                "shortName": "Nokia",
                "dateUpdated": "2024-10-17T12:16:02.750Z"
            },
            "x_generator": {
                "engine": "cveClient/1.0.15"
            }
        },
        "adp": [
            {
                "metrics": [
                    {
                        "other": {
                            "type": "ssvc",
                            "content": {
                                "timestamp": "2024-10-17T15:02:47.474313Z",
                                "id": "CVE-2023-6728",
                                "options": [
                                    {
                                        "Exploitation": "none"
                                    },
                                    {
                                        "Automatable": "no"
                                    },
                                    {
                                        "Technical Impact": "partial"
                                    }
                                ],
                                "role": "CISA Coordinator",
                                "version": "2.0.3"
                            }
                        }
                    }
                ],
                "title": "CISA ADP Vulnrichment",
                "providerMetadata": {
                    "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
                    "shortName": "CISA-ADP",
                    "dateUpdated": "2024-10-17T15:02:54.456Z"
                }
            }
        ]
    }
}