CyberSec.Space Logo
Back to CVE Browser

CVE-2019-15064

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0930%
EPSS Percentile1.88th
PublishedOct 17, 2019
Last ModifiedNov 21, 2024

Vulnerability Description

HiNet GPON firmware version < I040GWR190731 allows an attacker login to device without any authentication.

Affected Platforms (CPE)

💻
Hinet

Gpon Firmware

< i040gwr190731

References & Advisories

🔗 https://tvn.twcert.org.tw/taiwanvn/TVN-201908007
🔗 https://www.twcert.org.tw/en/cp-128-3015-170fe-2.html
🔗 https://tvn.twcert.org.tw/taiwanvn/TVN-201908007
🔗 https://www.twcert.org.tw/en/cp-128-3015-170fe-2.html

Related Vulnerabilities

CVE-2019-1506610.0

An “invalid command” handler issue was discovered in HiNet GPON firmware < I040GWR190731. It allows an attacker to execute arbitra...

CVE-2019-1341110.0

An “invalid command” handler issue was discovered in HiNet GPON firmware < I040GWR190731. It allows an attacker to execute arbitra...

CVE-2019-39189.8

The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 contains multiple hard coded credentials for the Telnet...

CVE-2019-39229.8

The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to a stack buffer overflow via crafted HT...