← Back

An5506 02 B Firmware

an5506-02-b_firmware

Vendor: Fiberhome • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-38814
1Fiberhome
1An5506 02 B Firmware
Nov 21, 2024
Sep 15, 2022
N/A· v4
5.4 MEDIUM· v3
N/A· v2
A stored cross-site scripting (XSS) vulnerability in the auth_settings component of FiberHome AN5506-02-B vRP2521 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the sncfg_lo...Show more
A stored cross-site scripting (XSS) vulnerability in the auth_settings component of FiberHome AN5506-02-B vRP2521 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the sncfg_loid text field.Show less
CVE-2021-42912
1Fiberhome
6Aan5506 04 G2g Firmware
An5506 01 A FirmwareAn5506 01 B Firmware+3 more
Nov 21, 2024
Dec 16, 2021
N/A· v4
8.8 HIGH· v3
9.0 HIGH· v2
FiberHome ONU GPON AN5506-04-F RP2617 is affected by an OS command injection vulnerability. This vulnerability allows the attacker, once logged in, to send commands to the operating system as the root user via the ping d...Show more
FiberHome ONU GPON AN5506-04-F RP2617 is affected by an OS command injection vulnerability. This vulnerability allows the attacker, once logged in, to send commands to the operating system as the root user via the ping diagnostic tool, bypassing the IP address field, and concatenating OS commands with a semicolon.Show less