CVE-2025-71056

Improper session management in GCOM EPON 1GE ONU version C00R371V00B01 allows attackers to execute a session hijacking attack via spoofing the IP address of an authenticated user...

CVE-2025-71056

Improper session management in GCOM EPON 1GE ONU version C00R371V00B01 allows attackers to execute a session hijacking attack via spoofing the IP address of an authenticated user...

CVE-2025-71056

Improper session management in GCOM EPON 1GE ONU version C00R371V00B01 allows attackers to execute a session hijacking attack via spoofing the IP address of an authenticated user...

EUVD-2025-206085

ZBL EPON ONU Broadband Router V100R001 contains a privilege escalation vulnerability that allows limited administrative users to elevate access by sending requests to configuration endpoints. Attackers can exploit the vulnerability by accessing the configuration backup or password page to disclos...

CVE-2021-47741

The CVE-2021-47741 entry concerns the ZBL EPON ONU Broadband Router V100R001. The vulnerability is a privilege-escalation issue that allows limited administrative users to elevate access by calling configuration endpoints. Exploitation is described as possible through access to the configuration ...

EUVD-2022-55924

JM-DATA ONU JF511-TV version 1.0.67 is vulnerable to cross-site request forgery CSRF attacks, allowing attackers to perform administrative actions on behalf of authenticated users without their knowledge or consent...

EUVD-2022-55926

JM-DATA ONU JF511-TV version 1.0.67 is vulnerable to authenticated stored cross-site scripting XSS attacks, allowing attackers with authenticated access to inject malicious scripts that will be executed in other users' browsers when they view the affected content...

CVE-2022-50801

JM-DATA ONU JF511-TV version 1.0.67 is vulnerable to authenticated stored cross-site scripting XSS attacks, allowing attackers with authenticated access to inject malicious scripts that will be executed in other users' browsers when they view the affected content...

CVE-2022-50803

JM-DATA ONU JF511-TV version 1.0.67 uses default credentials that allow attackers to gain unauthorized access to the device with administrative privileges...

CVE-2022-50804

JM-DATA ONU JF511-TV version 1.0.67 is vulnerable to cross-site request forgery CSRF attacks, allowing attackers to perform administrative actions on behalf of authenticated users without their knowledge or consent...

CVE-2022-50804

The vulnerability CVE-2022-50804 affects JM-DATA ONU JF511-TV version 1.0.67 and is a CSRF flaw that allows an attacker to perform administrative actions on behalf of an authenticated user. The issue is driven by cross-site request forgery in the device’s web interface, enabling unauthorized admi...

CVE-2022-50804 JM-DATA ONU JF511-TV 1.0.67 Cross-Site Request Forgery (CSRF) Vulnerability

JM-DATA ONU JF511-TV version 1.0.67 is vulnerable to cross-site request forgery CSRF attacks, allowing attackers to perform administrative actions on behalf of authenticated users without their knowledge or consent...

CVE-2022-50803 JM-DATA ONU JF511-TV 1.0.67 Default Credentials Vulnerability

JM-DATA ONU JF511-TV version 1.0.67 uses default credentials that allow attackers to gain unauthorized access to the device with administrative privileges...

CVE-2022-50801

CVE-2022-50801 affects the JM-DATA ONU JF511-TV device, version 1.0.67. The issue is an authenticated stored cross-site scripting (XSS) vulnerability that allows an attacker with authenticated access to inject scripts executed in other users’ browsers when they view affected content. The impact i...

CVE-2022-50801 JM-DATA ONU JF511-TV 1.0.67 Authenticated Stored Cross-Site Scripting (XSS) Vulnerability

JM-DATA ONU JF511-TV version 1.0.67 is vulnerable to authenticated stored cross-site scripting XSS attacks, allowing attackers with authenticated access to inject malicious scripts that will be executed in other users' browsers when they view the affected content...

CVE-2022-50803 JM-DATA ONU JF511-TV 1.0.67 Default Credentials Vulnerability

JM-DATA ONU JF511-TV version 1.0.67 uses default credentials that allow attackers to gain unauthorized access to the device with administrative privileges...

CVE-2022-50801 JM-DATA ONU JF511-TV 1.0.67 Authenticated Stored Cross-Site Scripting (XSS) Vulnerability

JM-DATA ONU JF511-TV version 1.0.67 is vulnerable to authenticated stored cross-site scripting XSS attacks, allowing attackers with authenticated access to inject malicious scripts that will be executed in other users' browsers when they view the affected content...

PT-2025-54248

Name of the Vulnerable Software and Affected Versions JM-DATA ONU JF511-TV version 1.0.67 Description The JM-DATA ONU JF511-TV device version 1.0.67 is susceptible to authenticated stored cross-site scripting XSS attacks. An attacker gaining authenticated access can inject malicious scripts. Thes...

JM-DATA ONU JF511-TV 安全漏洞

The JM-DATA ONU JF511-TV is an optical cat terminal device from JM-DATA Austria. A security vulnerability exists in the JM-DATA ONU JF511-TV version 1.0.67, which stems from the use of default credentials and could lead to unauthorized administrator access...

JM-DATA ONU JF511-TV 跨站脚本漏洞

The JM-DATA ONU JF511-TV is an optical cat terminal device from JM-DATA Austria. A cross-site scripting vulnerability exists in JM-DATA ONU JF511-TV version 1.0.67, which stems from an authenticated stored cross-site scripting vulnerability that could lead to malicious script injection...