Unrated severityNVD Advisory· Published Dec 8, 2025· Updated Dec 8, 2025

Server Side Request Forgery (SSRF) in the web server of Infinera MTC-9

CVE-2025-26487

Description

Server-Side Request Forgery (SSRF) vulnerability in Infinera MTC-9 version allows remote unauthenticated users to gain access to other network resources using HTTPS requests through the appliance used as a bridge.

Affected products

Infinera/MTC-9llm-fuzzy
Infinera/MTC-9v5
Range: R22.1.1.0275

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.cvcn.gov.it/cvcn/cve/CVE-2025-26487mitregovernment-resource

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000