← Back

Iscom Ht803g U Firmware

iscom_ht803g-u_firmware

Vendor: Raisecom • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2019-7385
1Raisecom
4Iscom Ht803g 1ge Firmware
Iscom Ht803g U FirmwareIscom Ht803g W Firmware+1 more
Nov 21, 2024
Mar 21, 2019
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
An authenticated shell command injection issue has been discovered in Raisecom ISCOM HT803G-U, HT803G-W, HT803G-1GE, and HT803G GPON products with the firmware version ISCOMHT803G-U_2.0.0_140521_R4.1.47.002 or below, The...Show more
An authenticated shell command injection issue has been discovered in Raisecom ISCOM HT803G-U, HT803G-W, HT803G-1GE, and HT803G GPON products with the firmware version ISCOMHT803G-U_2.0.0_140521_R4.1.47.002 or below, The values of the newpass and confpass parameters in /bin/WebMGR are used in a system call in the firmware. Because there is no user input validation, this leads to authenticated code execution on the device.Show less
CVE-2019-7384
1Raisecom
4Iscom Ht803g 1ge Firmware
Iscom Ht803g U FirmwareIscom Ht803g W Firmware+1 more
Nov 21, 2024
Mar 21, 2019
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
An authenticated shell command injection issue has been discovered in Raisecom ISCOM HT803G-U, HT803G-W, HT803G-1GE, and HT803G GPON products with the firmware version ISCOMHT803G-U_2.0.0_140521_R4.1.47.002 or below. The...Show more
An authenticated shell command injection issue has been discovered in Raisecom ISCOM HT803G-U, HT803G-W, HT803G-1GE, and HT803G GPON products with the firmware version ISCOMHT803G-U_2.0.0_140521_R4.1.47.002 or below. The value of the fmgpon_loid parameter is used in a system call inside the boa binary. Because there is no user input validation, this leads to authenticated code execution on the device.Show less