Vulnerability Description
An issue was discovered on Dasan GPON home routers. Command Injection can occur via the dest_host parameter in a diag_action=ping request to a GponForm/diag_Form URI. Because the router saves ping results in /tmp and transmits them to the user when the user revisits /diag.html, it's quite simple to execute commands and retrieve their output.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dasannetworks | Gpon Router Firmware | - |
| Dasannetworks | Gpon Router | - |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/107053Broken LinkThird Party AdvisoryVDB Entry
- https://www.exploit-db.com/exploits/44576/ExploitThird Party AdvisoryVDB Entry
- https://www.vpnmentor.com/blog/critical-vulnerability-gpon-router/ExploitTechnical DescriptionThird Party Advisory
- http://www.securityfocus.com/bid/107053Broken LinkThird Party AdvisoryVDB Entry
- https://www.exploit-db.com/exploits/44576/ExploitThird Party AdvisoryVDB Entry
- https://www.vpnmentor.com/blog/critical-vulnerability-gpon-router/ExploitTechnical DescriptionThird Party Advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-US Government Resource
FAQ
What is CVE-2018-10562?
CVE-2018-10562 is a vulnerability with a CVSS score of 9.8 (CRITICAL). An issue was discovered on Dasan GPON home routers. Command Injection can occur via the dest_host parameter in a diag_action=ping request to a GponForm/diag_Form URI. Because the router saves ping res...
How severe is CVE-2018-10562?
CVE-2018-10562 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2018-10562?
Check the references section above for vendor advisories and patch information. Affected products include: Dasannetworks Gpon Router Firmware, Dasannetworks Gpon Router.