CVE-2026-5268

CVE-2026-5268CVE-2026-5268

Description

An authentication bypass vulnerability exists in the default SFTP server component utilized across the Ciena products listed. This vulnerability allows a remote, unauthenticated attacker to bypass security controls and gain unauthorized access to the underlying filesystem. Successful exploitation could allow an attacker to read or modify system files.

Scoring

CVSS 9.1 ()
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Last modified2026-07-06
Sourced from NVD. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.