Lucene search
MitreCVELIST:CVE-2019-7385HistoryMar 17, 2019 - 7:13 p.m.
CVE-2019-7385
2019-03-1719:13:51
mitre
www.cve.org
3
EPSS
0.002
Percentile
59.9%
An authenticated shell command injection issue has been discovered in Raisecom ISCOM HT803G-U, HT803G-W, HT803G-1GE, and HT803G GPON products with the firmware version ISCOMHT803G-U_2.0.0_140521_R4.1.47.002 or below, The values of the newpass and confpass parameters in /bin/WebMGR are used in a system call in the firmware. Because there is no user input validation, this leads to authenticated code execution on the device.
Related
packetstorm
packetstorm
Raisecom Technology GPON-ONU HT803G-07 Command Injection
2019-02-13 00:00:00
Raisecom XPON ISCOMHT803G-U_2.0.0_140521_R4.1.47.002 Remote Code Execution
2019-03-05 00:00:00
prion
prion
Command injection
2019-03-21 16:01:00
zdt
zdt
Raisecom XPON ISCOMHT803G-U_2.0.0_140521_R4.1.47.002 - Remote Code Execution Exploit
2019-03-04 00:00:00
Raisecom Technology GPON-ONU HT803G-07 Command Injection (2)
2019-02-13 00:00:00
exploitpack
exploitpack
Raisecom XPON ISCOMHT803G-U_2.0.0_140521_R4.1.47.002 - Remote Code Execution
2019-03-04 00:00:00
exploitdb
exploitdb
Raisecom XPON ISCOMHT803G-U_2.0.0_140521_R4.1.47.002 - Remote Code Execution
2019-03-04 00:00:00
cve
cve
CVE-2019-7385
2019-03-21 16:01:11
nvd
nvd
CVE-2019-7385
2019-03-21 16:01:11