Infinera Mtc 9 Firmware

5 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2025-27020 CRITICAL Act Now

Improper configuration of the SSH service in Infinera MTC-9 allows an unauthenticated attacker to execute arbitrary commands and access data on file system . This issue affects MTC-9: from R22.1.1.0275 before R23.0.

Authentication Bypass Infinera Mtc 9 Firmware
NVD
CVSS 3.1
9.8
EPSS
0.2%
CVE-2025-27019 CRITICAL Act Now

Remote shell service (RSH) in Infinera MTC-9 version R22.1.1.0275 allows an attacker to utilize password-less user accounts and obtain system access by activating a reverse shell.This issue affects MTC-9: from R22.1.1.0275 before R23.0.

Authentication Bypass Infinera Mtc 9 Firmware
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-26489 MEDIUM This Month

Improper input validation in the Netconf service in Infinera MTC-9 allows remote authenticated users to crash the service and reboot the appliance, thus causing a DoS condition, via crafted XML payloads.This issue affects MTC-9: from R22.1.1.0275 before R23.0.

Denial Of Service Infinera Mtc 9 Firmware
NVD
CVSS 3.1
6.5
EPSS
0.2%
CVE-2025-26488 HIGH This Week

Improper Input Validation vulnerability in Infinera MTC-9 allows remote unauthenticated users to crash the service and cause a reboot of the appliance, thus causing a DoS condition, via crafted XML payloads.This issue affects MTC-9: from R22.1.1.0275 before R23.0.

Denial Of Service Infinera Mtc 9 Firmware
NVD
CVSS 3.1
7.5
EPSS
0.1%
CVE-2025-26487 HIGH This Week

Server-Side Request Forgery (SSRF) vulnerability in Infinera MTC-9 version allows remote unauthenticated users to gain access to other network resources using HTTPS requests through the appliance used as a bridge.

SSRF Infinera Mtc 9 Firmware
NVD
CVSS 3.1
8.6
EPSS
0.1%
CVE-2025-27020
EPSS 0% CVSS 9.8
CRITICAL Act Now

Improper configuration of the SSH service in Infinera MTC-9 allows an unauthenticated attacker to execute arbitrary commands and access data on file system . This issue affects MTC-9: from R22.1.1.0275 before R23.0.

Authentication Bypass Infinera Mtc 9 Firmware
NVD
CVE-2025-27019
EPSS 0% CVSS 9.8
CRITICAL Act Now

Remote shell service (RSH) in Infinera MTC-9 version R22.1.1.0275 allows an attacker to utilize password-less user accounts and obtain system access by activating a reverse shell.This issue affects MTC-9: from R22.1.1.0275 before R23.0.

Authentication Bypass Infinera Mtc 9 Firmware
NVD
CVE-2025-26489
EPSS 0% CVSS 6.5
MEDIUM This Month

Improper input validation in the Netconf service in Infinera MTC-9 allows remote authenticated users to crash the service and reboot the appliance, thus causing a DoS condition, via crafted XML payloads.This issue affects MTC-9: from R22.1.1.0275 before R23.0.

Denial Of Service Infinera Mtc 9 Firmware
NVD
CVE-2025-26488
EPSS 0% CVSS 7.5
HIGH This Week

Improper Input Validation vulnerability in Infinera MTC-9 allows remote unauthenticated users to crash the service and cause a reboot of the appliance, thus causing a DoS condition, via crafted XML payloads.This issue affects MTC-9: from R22.1.1.0275 before R23.0.

Denial Of Service Infinera Mtc 9 Firmware
NVD
CVE-2025-26487
EPSS 0% CVSS 8.6
HIGH This Week

Server-Side Request Forgery (SSRF) vulnerability in Infinera MTC-9 version allows remote unauthenticated users to gain access to other network resources using HTTPS requests through the appliance used as a bridge.

SSRF Infinera Mtc 9 Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy