Lucene search
K

251 matches found

NVD
NVD
added 2019/03/05 9:29 p.m.25 views

CVE-2019-3921

The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to a stack buffer overflow via crafted HTTP POST request sent by a remote, authenticated attacker to /GponForm/usbForm?script/. An attacker can leverage this vulnerability to potentially execute arbitrary cod...

8.8CVSS8.9AI score0.17891EPSS
Exploits1References2
Prion
Prion
added 2019/03/05 9:29 p.m.14 views

Stack overflow

The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to a stack buffer overflow via crafted HTTP POST request sent by a remote, authenticated attacker to /GponForm/usbForm?script/. An attacker can leverage this vulnerability to potentially execute arbitrary cod...

6.5CVSS8.9AI score0.17891EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2019/03/05 9:29 p.m.16 views

Stack overflow

The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to a stack buffer overflow via crafted HTTP POST request sent by a remote, unauthenticated attacker to /GponForm/fsetupForm. An attacker can leverage this vulnerability to potentially execute arbitrary code...

7.5CVSS9.8AI score0.05238EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2019/03/05 9:29 p.m.26 views

Command injection

The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to command injection via crafted HTTP request sent by a remote, authenticated attacker to /GponForm/usbrestoreForm?script/...

6.5CVSS8.8AI score0.03908EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2019/03/05 9:29 p.m.4 views

CVE-2019-3917

The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 allows a remote, unauthenticated attacker to enable telnetd on the router via a crafted HTTP request...

7.5CVSS7.1AI score0.02353EPSS
Exploits1References1
NVD
NVD
added 2019/03/05 9:29 p.m.21 views

CVE-2019-3922

The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to a stack buffer overflow via crafted HTTP POST request sent by a remote, unauthenticated attacker to /GponForm/fsetupForm. An attacker can leverage this vulnerability to potentially execute arbitrary code...

9.8CVSS9.9AI score0.05238EPSS
Exploits1References1
NVD
NVD
added 2019/03/05 9:29 p.m.23 views

CVE-2019-3919

The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to command injection via crafted HTTP request sent by a remote, authenticated attacker to /GponForm/usbrestoreForm?script/...

8.8CVSS8.8AI score0.03908EPSS
Exploits1References1
CVE
CVE
added 2019/03/05 9:0 p.m.53 views

CVE-2019-3917

The CVE-2019-3917 entry concerns the Alcatel Lucent I-240W-Q GPON ONT running firmware 3FE54567BOZJ19. A remote, unauthenticated attacker can enable telnetd on the router via a crafted HTTP request. Connected sources corroborate a remote, unauthenticated telnet enable/disable vulnerability, with ...

7.5CVSS7.4AI score0.02353EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2019/03/05 9:0 p.m.66 views

CVE-2019-3918

The CVE-2019-3918 entry concerns the Alcatel Lucent I-240W-Q GPON ONT with firmware 3FE54567BOZJ19, which contains multiple hard coded credentials for Telnet and SSH interfaces. The vulnerability is supported by multiple sources: NVD details show a network-facing issue with high impact (C/H/I/A) ...

10CVSS9.4AI score0.01979EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/03/05 9:0 p.m.37 views

CVE-2019-3920

The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to authenticated command injection via crafted HTTP request sent by a remote, authenticated attacker to /GponForm/deviceForm?script/...

8.9AI score0.03908EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/03/05 9:0 p.m.34 views

CVE-2019-3918

The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 contains multiple hard coded credentials for the Telnet and SSH interfaces...

9.6AI score0.01979EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/03/05 9:0 p.m.39 views

CVE-2019-3921

The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to a stack buffer overflow via crafted HTTP POST request sent by a remote, authenticated attacker to /GponForm/usbForm?script/. An attacker can leverage this vulnerability to potentially execute arbitrary cod...

9AI score0.17891EPSS
Exploits1References2
Cvelist
Cvelist
added 2019/03/05 9:0 p.m.27 views

CVE-2019-3922

The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to a stack buffer overflow via crafted HTTP POST request sent by a remote, unauthenticated attacker to /GponForm/fsetupForm. An attacker can leverage this vulnerability to potentially execute arbitrary code...

9.9AI score0.05238EPSS
Exploits1References1
CVE
CVE
added 2019/03/05 9:0 p.m.58 views

CVE-2019-3922

The CVE-2019-3922 entry involves the Alcatel Lucent I-240W-Q GPON ONT with firmware 3FE54567BOZJ19, vulnerable to a stack buffer overflow triggered by a crafted HTTP POST to /GponForm/fsetup_Form. The vulnerability is exploitable remotely and unauthenticated, potentially allowing arbitrary code e...

9.8CVSS9.8AI score0.05238EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/03/05 9:0 p.m.29 views

CVE-2019-3919

The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to command injection via crafted HTTP request sent by a remote, authenticated attacker to /GponForm/usbrestoreForm?script/...

8.9AI score0.03908EPSS
Exploits1References1
CVE
CVE
added 2019/03/05 9:0 p.m.65 views

CVE-2019-3921

The CVE-2019-3921 vulnerability affects the Alcatel-Lucent I-240W-Q GPON ONT running firmware 3FE54567BOZJ19. A stack buffer overflow can be triggered by a crafted HTTP POST to /GponForm/usb_Form?script/, allowing a remote, authenticated attacker to potentially execute arbitrary code. The availab...

8.8CVSS8.8AI score0.17891EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2019/03/05 9:0 p.m.66 views

CVE-2019-3919

The CVE-2019-3919 entry concerns the Alcatel Lucent I-240W-Q GPON ONT with firmware 3FE54567BOZJ19, vulnerable to command injection via a crafted HTTP request to /GponForm/usb_restore_Form?script/. The issue is exploitable by a remote, authenticated attacker and affects the targeted firmware as d...

8.8CVSS8.8AI score0.03908EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2019/03/05 9:0 p.m.57 views

CVE-2019-3920

CVE-2019-3920 affects Alcatel Lucent I-240W-Q GPON ONT with firmware 3FE54567BOZJ19. The vulnerability is an authenticated command-injection flaw exploitable by a remote, authenticated attacker sending a crafted HTTP request to /GponForm/device_Form?script/. The core impact is authenticated remot...

8.8CVSS8.7AI score0.03908EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2019/03/05 12:0 a.m.5 views

PT-2019-16773 · Alcatel Lucent · Alcatel Lucent I-240W-Q Gpon Ont

Name of the Vulnerable Software and Affected Versions: Alcatel Lucent I-240W-Q GPON ONT version 3FE54567BOZJ19 Description: The issue concerns the presence of multiple hard-coded credentials for the Telnet and SSH interfaces in the affected device. This could potentially allow unauthorized access...

10CVSS9.3AI score0.01979EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2019/03/05 12:0 a.m.6 views

PT-2019-16774 · Alcatel Lucent · Alcatel Lucent I-240W-Q Gpon Ont

Name of the Vulnerable Software and Affected Versions: Alcatel Lucent I-240W-Q GPON ONT version 3FE54567BOZJ19 Description: The issue allows command injection via crafted HTTP requests sent by a remote, authenticated attacker to the "/GponForm/usb restore Form?script/" endpoint. This enables the...

8.8CVSS9AI score0.03908EPSS
Exploits1References3
Rows per page
Query Builder