A service which is hosted on port 6998 in HiNet GPON firmware < I040GWR190731 allows an attacker to execute a specific command to read arbitrary files. CVSS 3.0 Base score 9.3. CVSS vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L).
References
Link | Resource |
---|---|
https://tvn.twcert.org.tw/taiwanvn/TVN-201908011 | Third Party Advisory |
https://www.twcert.org.tw/en/cp-128-3016-b0e90-2.html | Third Party Advisory |
https://tvn.twcert.org.tw/taiwanvn/TVN-201908011 | Third Party Advisory |
https://www.twcert.org.tw/en/cp-128-3016-b0e90-2.html | Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 04:27
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 9.3 |
References | () https://tvn.twcert.org.tw/taiwanvn/TVN-201908011 - Third Party Advisory | |
References | () https://www.twcert.org.tw/en/cp-128-3016-b0e90-2.html - Third Party Advisory |
Information
Published : 2019-10-17 20:15
Updated : 2024-11-21 04:27
NVD link : CVE-2019-15065
Mitre link : CVE-2019-15065
CVE.ORG link : CVE-2019-15065
JSON object : View
Products Affected
hinet
- gpon_firmware
- gpon
CWE