Infinera G42

6 CVEs affecting Infinera G42. Latest disclosed: 2025-07-02. Critical: 0, High: 3.

Top CVEs affecting Infinera G42
CVESeverityScorePublishedSummary
CVE-2025-27025High8.82025-07-02The target device exposes a service on a specific TCP port with a configured endpoint. The access to that endpoint is granted using a Basic Authentication me…
CVE-2025-27022High7.52025-07-02A path traversal vulnerability of the WebGUI HTTP endpoint in Infinera G42 version R6.1.3 allows remote authenticated users to download all OS files via HTTP…
CVE-2025-27021High7.02025-07-02The misconfiguration in the sudoers configuration of the operating system in Infinera G42 version R6.1.3 allows low privileged OS users to read/write physica…
CVE-2025-27024Medium6.52025-07-02Unrestricted access to OS file system in SFTP service in Infinera G42 version R6.1.3 allows remote authenticated users to read/write OS files via SFTP connec…
CVE-2025-27023Medium6.52025-07-02Lack or insufficent input validation in WebGUI CLI web in Infinera G42 version R6.1.3 allows remote authenticated users to read all OS files via crafted CLI…
CVE-2025-27026Medium4.92025-07-02A missing double-check feature in the WebGUI for CLI deactivation in Infinera G42 version R6.1.3 allows an authenticated administrator to make other manageme…