Lucene search
K

10 matches found

The Hacker News
The Hacker News
added 2024/11/08 2:2 p.m.100 views

AndroxGh0st Malware Integrates Mozi Botnet to Target IoT and Cloud Services

The threat actors behind the AndroxGh0st malware are now exploiting a broader set of security flaws impacting various internet-facing applications, while also deploying the Mozi botnet malware. "This botnet utilizes remote code execution and credential-stealing methods to maintain persistent...

10CVSS10AI score0.99999EPSS
Exploits365
CISA KEV Catalog
CISA KEV Catalog
added 2022/03/31 12:0 a.m.44 views

Dasan GPON Routers Command Injection Vulnerability

Dasan GPON Routers contain an authentication bypass vulnerability. When combined with CVE-2018-10561, exploitation can allow an attacker to perform remote code execution...

9.8CVSS6.3AI score0.9995EPSS
In wildExploits10
Tenable Nessus
Tenable Nessus
added 2019/03/28 12:0 a.m.140 views

GPON ONT Home Gateway Authenticated Remote Command Execution (CVE-2019-3920)

Binary data gponcve-2019-3920.nbin...

8.8CVSS9.3AI score0.03908EPSS
Exploits1References2
exploitpack
exploitpack
added 2019/02/28 12:0 a.m.273 views

Alcatel-Lucent (Nokia) GPON I-240W-Q - Buffer Overflow

Alcatel-Lucent Nokia GPON I-240W-Q - Buffer Overflow !/usr/bin/python3 import argparse import requests import urllib.parse import binascii import re def runtarget: """ Execute exploitation """ We're using CVE-2018-10561 and/or it's extension in order to exploit this Authenticated RCE in usbForm...

7.5CVSS0.8AI score0.93316EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2018/12/19 12:0 a.m.983 views

GPON ONT Home Gateway Router is vulnerable to authentication bypass (CVE-2018-10561)

Binary data gponcve-2018-10561.nbin...

9.8CVSS9.8AI score0.93316EPSS
Exploits7References2
VulnCheck KEV
VulnCheck KEV
added 2018/06/15 12:0 a.m.4 views

VulnCheck KEV: CVE-2018-10562

Dasan GPON Routers contain an authentication bypass vulnerability. When combined with CVE-2018-10561, exploitation can allow an attacker to perform remote code execution...

9.8CVSS7.7AI score0.9995EPSS
Exploits10References1
Check Point Advisories
Check Point Advisories
added 2018/05/13 12:0 a.m.48 views

Dasan GPON Router Authentication Bypass (CVE-2018-10561)

An authentication bypass vulnerability exists in Dasan GPON routers. Successful exploitation of this vulnerability would allow remote attackers to obtain sensitive information and gain unauthorized access into the affected system...

7.5CVSS5.7AI score0.93316EPSS
Exploits7
Circl
Circl
added 2018/05/10 10:42 a.m.13 views

CVE-2018-10561

creationtimestamp| type| source ---|---|--- 2018-05-10 10:42:33+00:00| seen| MISP/5af412ea-4254-4668-b1ea-44bc950d210f 2018-05-10 16:08:26+00:00| published-proof-of-concept| https://t.me/canyoupwnme/3739 2018-06-18 09:04:01+00:00| seen| MISP/5b2774da-6bb4-46c0-8483-43e102de0b81 2019-01-25...

9.8CVSS7.5AI score0.93316EPSS
Exploits7References11
Vulnrichment
Vulnrichment
added 2018/05/04 3:0 a.m.14 views

CVE-2018-10561

An issue was discovered on Dasan GPON home routers. It is possible to bypass authentication simply by appending "?images" to any URL of the device that requires authentication, as demonstrated by the /menu.html?images/ or /GponForm/diagFORM?images/ URI. One can then manage the device...

7.3AI score0.93316EPSS
Exploits7References3
CVE
CVE
added 2018/05/04 3:0 a.m.1547 views

CVE-2018-10561

CVE-2018-10561 describes an authentication bypass in Dasan GPON home routers. The vulnerability allows an attacker to bypass login by appending “?images” to URLs on pages that require authentication (e.g., /menu.html?images/ or /GponForm/diag_FORM?images/), potentially granting the attacker acces...

9.8CVSS9.4AI score0.93316EPSS
In wildExploits7References4Affected Software1
Rows per page
Query Builder