Every CVE whose affected-product data names Nokia G42 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2025-27022 — CVSS 7.5 (high): A path traversal vulnerability of the WebGUI HTTP endpoint in Infinera G42 version R6.1.3 allows remote authenticated users to download all…
CVE-2025-27021 — CVSS 7.0 (high): The misconfiguration in the sudoers configuration of the operating system in Infinera G42 version R6.1.3 allows low privileged OS users to…
CVE-2025-27023 — CVSS 6.5 (medium): Lack or insufficent input validation in WebGUI CLI web in Infinera G42 version R6.1.3 allows remote authenticated users to read all OS…
CVE-2025-27024 — CVSS 6.5 (medium): Unrestricted access to OS file system in SFTP service in Infinera G42 version R6.1.3 allows remote authenticated users to read/write OS…
CVE-2025-27026 — CVSS 4.9 (medium): A missing double-check feature in the WebGUI for CLI deactivation in Infinera G42 version R6.1.3 allows an authenticated administrator to…