CVE-2025-27021

Name of the Vulnerable Software and Affected Versions: Infinera G42 version R6.1.3

Description: The issue is related to a misconfiguration in the sudoers configuration of the operating system, which allows low-privileged OS users to read and write physical memory via the devmem command line tool. This could lead to sensitive information disclosure, denial of service, and privilege escalation by tampering with kernel memory. The sudoers configuration allows the devmem command to be executed as a superuser without using a password, enabling access to an arbitrary memory area of the target device.

Recommendations: For Infinera G42 version R6.1.3, consider restricting access to the devmem command line tool to prevent low-privileged OS users from reading and writing physical memory. As a temporary workaround, disabling the execution of the devmem command as a superuser without a password can help minimize the risk of exploitation.