CVE-2019-3919
N/A
N/A
Summary
The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to command injection via crafted HTTP request sent by a remote, authenticated attacker to /GponForm/usb_restore_Form?script/.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Tenable | Alcatel Lucent I-240W-Q GPON ONT | Firmware version 3FE54567BOZJ19 | affected |
Weaknesses
- CWE-78: CWE-78: Improper Neutralization of Special Elements used in an OS Command
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.