Lucene search
K

19 matches found

NVD
NVD
added 2025/12/08 10:16 a.m.5 views

CVE-2025-27020

Improper configuration of the SSH service in Infinera MTC-9 allows an unauthenticated attacker to execute arbitrary commands and access data on file system . This issue affects MTC-9: from R22.1.1.0275 before R23.0...

9.8CVSS0.00477EPSS
Exploits0References1
OSV
OSV
added 2025/12/08 10:16 a.m.2 views

CVE-2025-27019

Remote shell service RSH in Infinera MTC-9 version R22.1.1.0275 allows an attacker to utilize password-less user accounts and obtain system access by activating a reverse shell.This issue affects MTC-9: from R22.1.1.0275 before R23.0...

9.8CVSS7.1AI score0.00405EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/08 9:26 a.m.3 views

CVE-2025-27020 Improper configuration of SSH service in Infinera MTC-9

Improper configuration of the SSH service in Infinera MTC-9 allows an unauthenticated attacker to execute arbitrary commands and access data on file system . This issue affects MTC-9: from R22.1.1.0275 before R23.0...

9.8CVSS7.4AI score0.00477EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/08 9:22 a.m.2 views

CVE-2025-27019 Remote shell service (RSH) in Infinera MTC-9

Remote shell service RSH in Infinera MTC-9 version R22.1.1.0275 allows an attacker to utilize password-less user accounts and obtain system access by activating a reverse shell.This issue affects MTC-9: from R22.1.1.0275 before R23.0...

9.8CVSS6.5AI score0.00405EPSS
Exploits0References1
NVD
NVD
added 2025/12/08 9:15 a.m.4 views

CVE-2025-26487

Server-Side Request Forgery SSRF vulnerability in Infinera MTC-9 version allows remote unauthenticated users to gain access to other network resources using HTTPS requests through the appliance used as a bridge...

8.6CVSS0.00298EPSS
Exploits0References1
OSV
OSV
added 2025/12/08 9:15 a.m.4 views

CVE-2025-26488

Improper Input Validation vulnerability in Infinera MTC-9 allows remote unauthenticated users to crash the service and cause a reboot of the appliance, thus causing a DoS condition, via crafted XML payloads.This issue affects MTC-9: from R22.1.1.0275 before R23.0...

7.5CVSS5.8AI score0.00318EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/08 8:56 a.m.3 views

EUVD-2025-201681

Improper input validation in the Netconf service in Infinera MTC-9 allows remote authenticated users to crash the service and reboot the appliance, thus causing a DoS condition, via crafted XML payloads.This issue affects MTC-9: from R22.1.1.0275 before R23.0...

6.5CVSS6.3AI score0.0028EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/08 8:56 a.m.2 views

CVE-2025-26489 Improper input validation in Netconf service in Infinera MTC-9

Improper input validation in the Netconf service in Infinera MTC-9 allows remote authenticated users to crash the service and reboot the appliance, thus causing a DoS condition, via crafted XML payloads.This issue affects MTC-9: from R22.1.1.0275 before R23.0...

6.5CVSS6.4AI score0.0028EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/08 8:52 a.m.2 views

CVE-2025-26488 Improper input validation in XML Management service in Infinera MTC-9

Improper Input Validation vulnerability in Infinera MTC-9 allows remote unauthenticated users to crash the service and cause a reboot of the appliance, thus causing a DoS condition, via crafted XML payloads.This issue affects MTC-9: from R22.1.1.0275 before R23.0...

7.5CVSS6.6AI score0.00318EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/08 8:52 a.m.5 views

EUVD-2025-201683

Improper Input Validation vulnerability in Infinera MTC-9 allows remote unauthenticated users to crash the service and cause a reboot of the appliance, thus causing a DoS condition, via crafted XML payloads.This issue affects MTC-9: from R22.1.1.0275 before R23.0...

7.5CVSS6.5AI score0.00318EPSS
Exploits0References2
CVE
CVE
added 2025/12/08 8:44 a.m.12 views

CVE-2025-26487

CVE-2025-26487 describes a Server-Side Request Forgery (SSRF) in Infinera MTC-9 web server. Affected component: Infinera MTC-9; root cause and exact affected versions are not detailed in the provided documents. Impact: remote unauthenticated users can access other network resources by sending HTT...

8.6CVSS6.8AI score0.00298EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/12/08 8:44 a.m.2 views

CVE-2025-26487 Server Side Request Forgery (SSRF) in the web server of Infinera MTC-9

Server-Side Request Forgery SSRF vulnerability in Infinera MTC-9 version allows remote unauthenticated users to gain access to other network resources using HTTPS requests through the appliance used as a bridge...

8.6CVSS6.8AI score0.00298EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/08 12:0 a.m.4 views

PT-2025-49530

Name of the Vulnerable Software and Affected Versions Infinera MTC-9 affected versions not specified Description The software contains a Server-Side Request Forgery SSRF issue. This allows remote, unauthenticated users to access other network resources by leveraging HTTPS requests through the...

8.6CVSS6.4AI score0.00298EPSS
Exploits0References9
CNNVD
CNNVD
added 2025/12/08 12:0 a.m.4 views

Infinera MTC-9 安全漏洞

Infinera MTC-9 is a modular controller from Infinera USA. A security vulnerability exists in Infinera MTC-9 version R22.1.1.0275 through versions prior to R23.0, which stems from a misconfiguration of the SSH service that could result in the execution of arbitrary commands and access to file syst...

9.8CVSS7.8AI score0.00477EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/08 12:0 a.m.3 views

Infinera MTC-9 安全漏洞

Infinera MTC-9 is a modular controller from Infinera USA. A security vulnerability exists in Infinera MTC-9 version R22.1.1.0275 through versions prior to R23.0, which stems from a misconfiguration of the remote shell service that could result in system access...

9.8CVSS7.7AI score0.00405EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/08 12:0 a.m.4 views

PT-2025-49542

Name of the Vulnerable Software and Affected Versions Infinera MTC-9 versions R22.1.1.0275 through R22.9.9 Description An improper configuration of the SSH service in Infinera MTC-9 can allow an unauthenticated attacker to execute arbitrary commands and access data on the file system. The issue...

9.8CVSS8.2AI score0.00477EPSS
Exploits0References8
CNNVD
CNNVD
added 2025/12/08 12:0 a.m.3 views

Infinera MTC-9 安全漏洞

Infinera MTC-9 is a modular controller from Infinera USA. A security vulnerability exists in Infinera MTC-9 version R22.1.1.0275 through versions prior to R23.0, which stems from improper validation of Netconf service inputs and could lead to a denial of service attack...

6.5CVSS6.5AI score0.0028EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/08 12:0 a.m.4 views

Infinera MTC-9 安全漏洞

Infinera MTC-9 is a modular controller from Infinera USA. A security vulnerability exists in the Infinera MTC-9 that originates from server-side request forgery and could lead to access to other network resources...

8.6CVSS6.7AI score0.00298EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/08 12:0 a.m.5 views

PT-2025-49536

Name of the Vulnerable Software and Affected Versions Infinera MTC-9 versions R22.1.1.0275 through R23.0 Description A flaw exists in input validation within Infinera MTC-9 that enables remote, unauthenticated attackers to disrupt service and trigger a reboot of the appliance, leading to a...

7.5CVSS6.6AI score0.00318EPSS
Exploits0References6
Rows per page
Query Builder