Nokia G42_firmware

5 CVEs affecting Nokia G42_firmware. Latest disclosed: 2025-07-02. Critical: 0, High: 2.

Top CVEs affecting Nokia G42_firmware
CVESeverityScorePublishedSummary
CVE-2025-27022High7.52025-07-02A path traversal vulnerability of the WebGUI HTTP endpoint in Infinera G42 version R6.1.3 allows remote authenticated users to download all OS files via HTTP…
CVE-2025-27021High7.02025-07-02The misconfiguration in the sudoers configuration of the operating system in Infinera G42 version R6.1.3 allows low privileged OS users to read/write physica…
CVE-2025-27024Medium6.52025-07-02Unrestricted access to OS file system in SFTP service in Infinera G42 version R6.1.3 allows remote authenticated users to read/write OS files via SFTP connec…
CVE-2025-27023Medium6.52025-07-02Lack or insufficent input validation in WebGUI CLI web in Infinera G42 version R6.1.3 allows remote authenticated users to read all OS files via crafted CLI…
CVE-2025-27026Medium4.92025-07-02A missing double-check feature in the WebGUI for CLI deactivation in Infinera G42 version R6.1.3 allows an authenticated administrator to make other manageme…