Detections
Analytics
GPON ONT Home Gateway Router is vulnerable to authentication bypass (CVE-2018-10561)
critical Nessus Plugin ID 119776
Language:
Synopsis
The remote host is affected by an authentication bypass vulnerability.Description
An issue was discovered in GPON ONT Home Gateway Router web administration interface. It is possible to bypass authentication of web interface by using the following approach:- http(s)://<Router IP>/<some file>?images/
- http(s)://<Router IP>/<some file>?style/
- http(s)://<Router IP>/<some file>?script/
- http(s)://<Router IP>/images/../<some file>
- http(s)://<Router IP>/style/../<some file>
- http(s)://<Router IP>/script/../<some file> For example, '/menu.html?images/' or '/GponForm/diag_FORM?images/' URI.
This allows an attacker to fully control the target device.
Solution
Consult your vendor for a patch or a workaround.See Also
https://www.vpnmentor.com/blog/critical-vulnerability-gpon-router/
Plugin Details
Severity: Critical
ID: 119776
File Name: gpon_cve-2018-10561.nbin
Version: 1.79
Type: remote
Family: Web Servers
Published: 12/19/2018
Updated: 4/23/2024
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Critical
Score: 9.4
CVSS v2
Risk Factor: High
Base Score: 7.5
Temporal Score: 6.5
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS Score Source: CVE-2018-10561
CVSS v3
Risk Factor: Critical
Base Score: 9.8
Temporal Score: 9.4
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:dasannetworks:gpon_router
Required KB Items: installed_sw/GPON HG
Exploit Available: true
Exploit Ease: Exploits are available
Exploited by Nessus: true
Vulnerability Publication Date: 5/3/2018
CISA Known Exploited Vulnerability Due Dates: 4/21/2022
Reference Information
CVE: CVE-2018-10561