15 matches found
EUVD-2021-27299
Malware in sbrugna...
CVE-2024-20489 Cisco Routed Passive Optical Network Cleartext Password Vulnerability
A vulnerability in the storage method of the PON Controller configuration file could allow an authenticated, local attacker with low privileges to obtain the MongoDB credentials. This vulnerability is due to improper storage of the unencrypted database credentials on the device that is running...
Cisco Routed Passive Optical Network Controller Vulnerabilities
Multiple vulnerabilities in Cisco Routed Passive Optical Network PON Controller Software, which runs as a docker container on hardware that is supported by Cisco IOS XR Software, could allow an authenticated, remote attacker to perform command injection attacks, execute arbitrary commands on the...
Tenda HG6 Command Injection Vulnerability
Tenda HG6 is an intelligent routing passive optical network terminal from Tenda, China.A command injection vulnerability exists in Tenda HG6, which stems from the failure of the pingAddr and traceAddr parameters to properly filter the construction of command special characters, commands, etc. An...
CVE-2021-40113
Multiple vulnerabilities in the web-based management interface of the Cisco Catalyst Passive Optical Network PON Series Switches Optical Network Terminal ONT could allow an unauthenticated, remote attacker to perform the following actions: Log in with a default credential if the Telnet protocol i...
Command injection
Multiple vulnerabilities in the web-based management interface of the Cisco Catalyst Passive Optical Network PON Series Switches Optical Network Terminal ONT could allow an unauthenticated, remote attacker to perform the following actions: Log in with a default credential if the Telnet protocol i...
CVE-2021-40112
CVE-2021-40112 affects Cisco Catalyst PON Series Switches ONT via vulnerabilities in the web-based management interface that could allow an unauthenticated remote attacker to log in with default credentials (if Telnet is enabled), perform a command injection, and modify the device configuration. ...
Cisco Catalyst 安全漏洞
Cisco Catalyst is a series of switches from Cisco USA. A security vulnerability exists in the Cisco Catalyst Passive Optical Network Series Switches, which is caused by incorrect HTTPS input validation in the web management interface of the Cisco Catalyst PON Series Switches ONT. An attacker coul...
Cisco Catalyst Passive Optical Network Series Switches 信任管理问题漏洞
Cisco Catalyst Passive Optical Network Series Switches Catalyst Pon Series Switches is a series of high-performance, simple and easy-to-maintain switches from Cisco. Used to provide competitive network solutions. A trust management issue vulnerability exists in the Cisco Catalyst Passive Optical...
Information Disclosure Vulnerability in Syrotech EPON SY-GPON-1110-WDAONT
The EPON SY-GPON-1110-WDAONT is a router. An information disclosure vulnerability exists in the Syrotech EPON SY-GPON-1110-WDAONT, which can be exploited by attackers to obtain sensitive information...
Chunghwa Telecom HiNet GPON Arbitrary File Read Vulnerability (CNVD-2019-38472)
Chunghwa Telecom HiNet GPON is an optical modem from Chunghwa Telecom in Taiwan, China. A security vulnerability exists in the Chunghwa Telecom HiNet GPON using firmware prior to I040GWR190731. The vulnerability can be exploited by an attacker to execute commands and read arbitrary files via a...
GPON Router Authentication Stack Overflow Vulnerability
GPON Gigabit-Capable PON technology is the latest generation of broadband passive optical integrated access standard based on the ITU-TG.984.x standard. Gigabit-Capable PON GPON technology is the latest generation of broadband passive optical integrated access standard based on ITU-TG.984.x...
GPON Router Unauthenticated Stack Overflow Vulnerability
GPON Gigabit-Capable PON technology is the latest generation of broadband passive optical integrated access standard based on the ITU-TG.984.x standard. Gigabit-Capable PON GPON technology is the latest generation of broadband passive optical integrated access standard based on ITU-TG.984.x...
GPON Router Remote Unauthenticated Enable/Disable Telnet Service Vulnerability
GPON Gigabit-Capable PON technology is the latest generation of broadband passive optical integrated access standard based on the ITU-TG.984.x standard. Gigabit-Capable PON GPON technology is the latest generation of broadband passive optical integrated access standard based on ITU-TG.984.x...
Hackers are exploiting a new zero-day flaw in GPON routers
Even after being aware of various active cyber attacks against the GPON Wi-Fi routers, if you haven't yet taken them off the Internet, then be careful—because a new botnet has joined the GPON party, which is exploiting an undisclosed zero-day vulnerability in the wild. Security researchers from...