CVE-2025-10258

Summary

Infinera DNA is vulnerable to a time-based SQL injection vulnerability due to insufficient input validation, which may result in leaking of sensitive information.

Affected Software

VendorProductVersion RangeStatus
NokiaInfinera DNAEarlier than R24.2affected
NokiaInfinera DNAR24.2 and laterunaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References