Unrated severityNVD Advisory· Published Dec 8, 2025· Updated Dec 8, 2025

Improper input validation in XML Management service in Infinera MTC-9

CVE-2025-26488

Description

Improper Input Validation vulnerability in Infinera MTC-9 allows remote unauthenticated users to crash the service and cause a reboot of the appliance, thus causing a DoS condition, via crafted XML payloads.This issue affects MTC-9: from R22.1.1.0275 before R23.0.

Affected products

Infinera/MTC-9llm-fuzzy
Range: >= R22.1.1.0275, < R23.0
Infinera/MTC-9v5
Range: R22.1.1.0275

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.cvcn.gov.it/cvcn/cve/CVE-2025-26488mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000