Unrated severityNVD Advisory· Published Dec 8, 2025· Updated Dec 8, 2025

Improper input validation in Netconf service in Infinera MTC-9

CVE-2025-26489

Description

Improper input validation in the Netconf service in Infinera MTC-9 allows remote authenticated users to crash the service and reboot the appliance, thus causing a DoS condition, via crafted XML payloads.This issue affects MTC-9: from R22.1.1.0275 before R23.0.

Affected products

Infinera/MTC-9llm-fuzzy
Range: >= R22.1.1.0275, < R23.0
Infinera/MTC-9v5
Range: R22.1.1.0275

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.cve.org/CVERecordmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000