virus logo Web Application Security

Multiple.Routers.GPON.formLogin.Remote.Command.Injection

description-logoDescription

This indicates an attack attempt to exploit a Command Injection vulnerability in NetLink GPON ONT routers.
The vulnerability is due to insufficient sanitizing of user-supplied inputs in the application when handling a crafted HTTP request. A remote attacker may be able to exploit this to execute arbitrary commands on a vulnerable system.

affected-products-logoAffected Products

Any vulnerable NetLink GPON ONT router.

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Currently we are unaware of any vendor supplied patch for this issue.

Version Updates

Date Version Detail
2023-02-15 0.00341
ID 1090501679
Created Feb 15, 2023
Updated Feb 15, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Default Action pass
Active
Affected OS Linux
Affected App Other
Engine Version 5.0.0 or later