Infinera G42 vulnerabilities
6 known vulnerabilities affecting infinera/g42.
Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM4
Vulnerabilities
Page 1 of 1
CVE-2025-27025P2HIGHCVSS 8.8≥ 6.1.3, < 7.12025-07-02
CVE-2025-27025 [HIGH] CWE-280 CVE-2025-27025: The target device exposes a service on a specific TCP port with a configured endpoint. The access t
The target device exposes a service on a specific TCP port with a configured
endpoint. The access to that endpoint is granted using a Basic Authentication
method. The endpoint accepts also the PUT method and it is possible to
write files on the target device file system. Files are written as root.
Using Postman it is possible to perform a Directory Tra
nvd
CVE-2025-27021P3HIGHCVSS 7.8≥ 6.1.3, < 7.12025-07-02
CVE-2025-27021 [HIGH] CWE-266 CVE-2025-27021: The misconfiguration in the sudoers configuration of the operating system in Infinera G42 version R
The misconfiguration in the sudoers configuration of the operating system in
Infinera G42 version R6.1.3 allows low privileged OS users to
read/write physical memory via devmem command line tool.
This could
allow sensitive information disclosure, denial of service, and privilege
escalation by tampering with kernel memory.
Details: The output of "sudo
nvd
CVE-2025-27022P3MEDIUMCVSS 6.5≥ 6.1.3, < 7.12025-07-02
CVE-2025-27022 [MEDIUM] CWE-22 CVE-2025-27022: A path traversal vulnerability of the WebGUI HTTP endpoint in Infinera G42 version R6.1.3 allows re
A path traversal vulnerability of the WebGUI HTTP endpoint in Infinera G42 version R6.1.3
allows remote authenticated users to download all OS files via HTTP
requests.
Details:
Lack or insufficient validation of user-supplied input allows
authenticated users to access all files on the target machine file
system that are readable to the user account
nvd
CVE-2025-27024P3MEDIUMCVSS 6.5≥ 6.1.3, < 8.02025-07-02
CVE-2025-27024 [MEDIUM] CWE-280 CVE-2025-27024: Unrestricted access to OS file system in SFTP service in Infinera G42 version R6.1.3 allows remote
Unrestricted access to OS file system in SFTP service in Infinera G42
version R6.1.3 allows remote authenticated users to read/write OS files
via SFTP connections.
Details: Account members of the Network Administrator profile can access the
target machine via SFTP with the same credentials used for SSH CLI
access and are able to read all files accor
nvd
CVE-2025-27023P3MEDIUMCVSS 6.5≥ 6.1.3, < 7.12025-07-02
CVE-2025-27023 [MEDIUM] CWE-20 CVE-2025-27023: Lack or insufficent input validation in WebGUI CLI web in Infinera G42 version R6.1.3 allows remote
Lack or insufficent input validation in WebGUI CLI web in Infinera G42
version R6.1.3 allows remote authenticated users to read all OS files
via crafted CLI commands.
Details: The web interface based management of the Infinera G42 appliance enables the feature of
executing a restricted set of commands. This feature
also offers the option to execute
nvd
CVE-2025-27026P4MEDIUMCVSS 4.9≥ 6.1.3, < 8.02025-07-02
CVE-2025-27026 [MEDIUM] CWE-1220 CVE-2025-27026: A missing double-check feature in the WebGUI for CLI deactivation in Infinera G42 version R6.1.3 al
A missing double-check feature in the WebGUI for CLI deactivation in Infinera G42
version R6.1.3 allows an authenticated administrator to make other
management interfaces unavailable via local and network interfaces. The CLI deactivation via the WebGUI does not only stop CLI interface but deactivates also Linux Shell, WebGUI and Physical Serial Cons
nvd