CVE-2019-3914

Summary

Remote command injection vulnerability in Verizon Fios Quantum Gateway (G1100) firmware version 02.01.00.05 allows a remote, authenticated attacker to execute arbitrary commands on the target device by adding an access control rule for a network object with a crafted hostname.

Affected Software

VendorProductVersion RangeStatus
VerizonFios Quantum Gateway (G1100)Firmware version 02.01.00.05affected

Weaknesses

  • Authenticated Command Injection

ADP Enrichment

CVE Program Container

Additional References

References