HomePentest-Tools.com Logo

GPON Routers Multiple Vulnerabilities CVE-2018-10561CVE-2018-10562

Severity
CVSSv3 Score
9.8
Vulnerability description

GPON Home Routers are prone to multiple vulnerabilities. Those vulnerabilities where known to be exploited by the Mettle, Muhstik, Mirai, Hajime, and Satori Botnets in 2018.

Risk description

There exist two vulnerabilities: - Appending ?images/ to the URL when accessing the routers web interface will bypass authentication - The ping command of the router allows for code execution. Successful exploitation would allow an attacker to gain complete control over the target.

Recommendation

Contact the vendor to obtain a solution.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
May 4, 2018
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available