Lucene search
+L

191 matches found

vulnrichment
vulnrichment
added 2025/12/08 8:44 a.m.3 views

CVE-2025-26487 Server Side Request Forgery (SSRF) in the web server of Infinera MTC-9

Server-Side Request Forgery SSRF vulnerability in Infinera MTC-9 version allows remote unauthenticated users to gain access to other network resources using HTTPS requests through the appliance used as a bridge...

8.6CVSS6.8AI score0.00303EPSS
Exploits0References1
cvelist
cvelist
added 2025/12/08 8:44 a.m.33 views

CVE-2025-26487 Server Side Request Forgery (SSRF) in the web server of Infinera MTC-9

Server-Side Request Forgery SSRF vulnerability in Infinera MTC-9 version allows remote unauthenticated users to gain access to other network resources using HTTPS requests through the appliance used as a bridge...

8.6CVSS0.00303EPSS
Exploits0References1
cve
cve
added 2025/12/08 8:44 a.m.26 views

CVE-2025-26487

CVE-2025-26487 describes a Server-Side Request Forgery (SSRF) in Infinera MTC-9 web server. Affected component: Infinera MTC-9; root cause and exact affected versions are not detailed in the provided documents. Impact: remote unauthenticated users can access other network resources by sending HTT...

8.6CVSS6.8AI score0.00303EPSS
Exploits0References1Affected Software1
ptsecurity
ptsecurity
added 2025/12/08 12:0 a.m.9 views

PT-2025-49536

Name of the Vulnerable Software and Affected Versions Infinera MTC-9 versions R22.1.1.0275 through R23.0 Description A flaw exists in input validation within Infinera MTC-9 that enables remote, unauthenticated attackers to disrupt service and trigger a reboot of the appliance, leading to a...

7.5CVSS6.6AI score0.0033EPSS
Exploits0References6
ptsecurity
ptsecurity
added 2025/12/08 12:0 a.m.4 views

PT-2025-49530

Name of the Vulnerable Software and Affected Versions Infinera MTC-9 affected versions not specified Description The software contains a Server-Side Request Forgery SSRF issue. This allows remote, unauthenticated users to access other network resources by leveraging HTTPS requests through the...

8.6CVSS6.4AI score0.00303EPSS
Exploits0References9
cnnvd
cnnvd
added 2025/12/08 12:0 a.m.4 views

Infinera MTC-9 安全漏洞

Infinera MTC-9 is a modular controller from Infinera USA. A security vulnerability exists in Infinera MTC-9 version R22.1.1.0275 through versions prior to R23.0, which stems from improper validation of Netconf service inputs and could lead to a denial of service attack...

6.5CVSS6.5AI score0.00291EPSS
Exploits0References1
cnnvd
cnnvd
added 2025/12/08 12:0 a.m.5 views

Infinera MTC-9 安全漏洞

Infinera MTC-9 is a modular controller from Infinera USA. A security vulnerability exists in Infinera MTC-9 version R22.1.1.0275 through versions prior to R23.0, which stems from a misconfiguration of the SSH service that could result in the execution of arbitrary commands and access to file syst...

9.8CVSS7.8AI score0.00486EPSS
Exploits0References1
cnnvd
cnnvd
added 2025/12/08 12:0 a.m.5 views

Infinera MTC-9 安全漏洞

Infinera MTC-9 is a modular controller from Infinera USA. A security vulnerability exists in Infinera MTC-9 version R22.1.1.0275 through versions prior to R23.0, which stems from a misconfiguration of the remote shell service that could result in system access...

9.8CVSS7.7AI score0.00412EPSS
Exploits0References1
cnnvd
cnnvd
added 2025/12/08 12:0 a.m.4 views

Infinera MTC-9 安全漏洞

Infinera MTC-9 is a modular controller from Infinera USA. A security vulnerability exists in the Infinera MTC-9 that originates from server-side request forgery and could lead to access to other network resources...

8.6CVSS6.7AI score0.00303EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/12/08 12:0 a.m.7 views

PT-2025-49537

Name of the Vulnerable Software and Affected Versions Infinera MTC-9 versions R22.1.1.0275 through R23.0 Description A flaw exists in the Netconf service of Infinera MTC-9 that allows remotely authenticated users to cause a denial-of-service DoS condition. This is achieved by sending specially...

6.5CVSS6.4AI score0.00291EPSS
Exploits0References6
cnnvd
cnnvd
added 2025/12/08 12:0 a.m.4 views

Infinera MTC-9 安全漏洞

Infinera MTC-9 is a modular controller from Infinera USA. A security vulnerability exists in Infinera MTC-9 version R22.1.1.0275 through versions prior to R23.0, which stems from improper input validation and could lead to a denial of service attack...

7.5CVSS6.5AI score0.0033EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/12/08 12:0 a.m.5 views

PT-2025-49542

Name of the Vulnerable Software and Affected Versions Infinera MTC-9 versions R22.1.1.0275 through R22.9.9 Description An improper configuration of the SSH service in Infinera MTC-9 can allow an unauthenticated attacker to execute arbitrary commands and access data on the file system. The issue...

9.8CVSS8.2AI score0.00486EPSS
Exploits0References8
ptsecurity
ptsecurity
added 2025/12/08 12:0 a.m.9 views

PT-2025-49541

Name of the Vulnerable Software and Affected Versions Infinera MTC-9 versions R22.1.1.0275 through R22.1.1.0275 Description The Remote Shell Service RSH in Infinera MTC-9 allows an attacker to gain system access. This is achieved by exploiting password-less user accounts and activating a reverse...

9.8CVSS7.8AI score0.00412EPSS
Exploits0References8
euvd
euvd
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-19724

Malicious code in bioql PyPI...

4.9CVSS6.6AI score0.00335EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-19697

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00488EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-19705

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00318EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-19696

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00451EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-19698

Malicious code in bioql PyPI...

7CVSS6.6AI score0.00133EPSS
Exploits0References2
bdu_fstec
bdu_fstec
added 2025/07/21 12:0 a.m.8 views

The vulnerability in the command-line interface of the microprogramming software for digital optical network systems Infinera G42 allows a intruder to gain unauthorized access to protected information.

The vulnerability of the command-line interface of the microprogramming software for digital optical network systems Infinera G42 is related to insufficient validation of input data. Exploiting this vulnerability may allow a remote attacker to gain unauthorized access to protected information...

6.8CVSS5.5AI score0.00451EPSS
Exploits0References3
bdu_fstec
bdu_fstec
added 2025/07/21 12:0 a.m.11 views

The vulnerability of the SFTP service in the microsoftware for digital optical network systems Infinera G42 allows a hacker to gain read and write access to arbitrary files.

The vulnerability of the SFTP service in the microsoftware for Digital Optical Networking Systems Infinera G42 is related to improper handling of insufficient permissions or privileges. Exploiting this vulnerability can allow a malicious actor to gain read and write access to arbitrary files...

6.8CVSS5.6AI score0.00318EPSS
Exploits0References3
Rows per page
Query Builder