51 matches found
EUVD-2025-19698
Malicious code in bioql PyPI...
EUVD-2025-19696
Malicious code in bioql PyPI...
EUVD-2025-19697
Malicious code in bioql PyPI...
EUVD-2025-19724
Malicious code in bioql PyPI...
EUVD-2025-19705
Malicious code in bioql PyPI...
The vulnerability in the command-line interface of the microprogramming software for digital optical network systems Infinera G42 allows a intruder to gain unauthorized access to protected information.
The vulnerability of the command-line interface of the microprogramming software for digital optical network systems Infinera G42 is related to insufficient validation of input data. Exploiting this vulnerability may allow a remote attacker to gain unauthorized access to protected information...
The vulnerability of the SFTP service in the microsoftware for digital optical network systems Infinera G42 allows a hacker to gain read and write access to arbitrary files.
The vulnerability of the SFTP service in the microsoftware for Digital Optical Networking Systems Infinera G42 is related to improper handling of insufficient permissions or privileges. Exploiting this vulnerability can allow a malicious actor to gain read and write access to arbitrary files...
The vulnerability of the command-line utility devmem in the microprogramming software for digital optical network systems Infinera G42 allows a intruder to gain unauthorized access to protected information, enhance their privileges, or cause service failures.
The vulnerability of the command-line utility devmem in the microprogramming software for digital optical network systems Infinera G42 is related to incorrect privilege assignment. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information, increase...
The vulnerability in the web interface of the microprogramming software for Digital Optical Network Systems Infinera G42 allows a intruder to gain unauthorized access to protected information.
The vulnerability of the web interface of Microprogramming Software for Digital Optical Network Systems Infinera G42 is related to an incorrect restriction on the path name to the restricted access catalog. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to...
The vulnerability of the double-check function in the web interface of the microprogramming software for digital optical network systems Infinera G42, which allows a intruder to trigger a service failure.
The vulnerability of the double-check function in the web interface of the microprogramming software for digital optical network systems Infinera G42 is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to cause service failures...
CVE-2025-27026
A missing double-check feature in the WebGUI for CLI deactivation in Infinera G42 version R6.1.3 allows an authenticated administrator to make other management interfaces unavailable via local and network interfaces. The CLI deactivation via the WebGUI does not only stop CLI interface but...
CVE-2025-27024
Unrestricted access to OS file system in SFTP service in Infinera G42 version R6.1.3 allows remote authenticated users to read/write OS files via SFTP connections. Details: Account members of the Network Administrator profile can access the target machine via SFTP with the same credentials used f...
CVE-2025-27022
A path traversal vulnerability of the WebGUI HTTP endpoint in Infinera G42 version R6.1.3 allows remote authenticated users to download all OS files via HTTP requests. Details: Lack or insufficient validation of user-supplied input allows authenticated users to access all files on the target...
CVE-2025-27023
Lack or insufficent input validation in WebGUI CLI web in Infinera G42 version R6.1.3 allows remote authenticated users to read all OS files via crafted CLI commands. Details: The web interface based management of the Infinera G42 appliance enables the feature of executing a restricted set of...
CVE-2025-27026
A missing double-check feature in the WebGUI for CLI deactivation in Infinera G42 version R6.1.3 allows an authenticated administrator to make other management interfaces unavailable via local and network interfaces. The CLI deactivation via the WebGUI does not only stop CLI interface but...
CVE-2025-27026 Improper Access Control Granularity impacting Infinera G42
A missing double-check feature in the WebGUI for CLI deactivation in Infinera G42 version R6.1.3 allows an authenticated administrator to make other management interfaces unavailable via local and network interfaces. The CLI deactivation via the WebGUI does not only stop CLI interface but...
CVE-2025-27026
CVE-2025-27026 affects Infinera G42 version R6.1.3. A missing double‑check feature in the WebGUI CLI deactivation allows an authenticated administrator to disable multiple management interfaces across local and network access. The WebGUI‑driven CLI deactivation not only stops the CLI but also dea...
CVE-2025-27026 Improper Access Control Granularity impacting Infinera G42
A missing double-check feature in the WebGUI for CLI deactivation in Infinera G42 version R6.1.3 allows an authenticated administrator to make other management interfaces unavailable via local and network interfaces. The CLI deactivation via the WebGUI does not only stop CLI interface but...
CVE-2025-27023
Lack or insufficent input validation in WebGUI CLI web in Infinera G42 version R6.1.3 allows remote authenticated users to read all OS files via crafted CLI commands. Details: The web interface based management of the Infinera G42 appliance enables the feature of executing a restricted set of...
CVE-2025-27023
Lack or insufficent input validation in WebGUI CLI web in Infinera G42 version R6.1.3 allows remote authenticated users to read all OS files via crafted CLI commands. Details: The web interface based management of the Infinera G42 appliance enables the feature of executing a restricted set of...