Nokia G42_firmware
5 CVEs affecting Nokia G42_firmware. Latest disclosed: 2025-07-02. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-27022 | High | 7.5 | 2025-07-02 | A path traversal vulnerability of the WebGUI HTTP endpoint in Infinera G42 version R6.1.3 allows remote authenticated users to download all OS files via HTTP… |
CVE-2025-27021 | High | 7.0 | 2025-07-02 | The misconfiguration in the sudoers configuration of the operating system in Infinera G42 version R6.1.3 allows low privileged OS users to read/write physica… |
CVE-2025-27024 | Medium | 6.5 | 2025-07-02 | Unrestricted access to OS file system in SFTP service in Infinera G42 version R6.1.3 allows remote authenticated users to read/write OS files via SFTP connec… |
CVE-2025-27023 | Medium | 6.5 | 2025-07-02 | Lack or insufficent input validation in WebGUI CLI web in Infinera G42 version R6.1.3 allows remote authenticated users to read all OS files via crafted CLI… |
CVE-2025-27026 | Medium | 4.9 | 2025-07-02 | A missing double-check feature in the WebGUI for CLI deactivation in Infinera G42 version R6.1.3 allows an authenticated administrator to make other manageme… |