VYPR

I-240W-Q

by Alcatel Lucent

CVEs (4)

  • CVE-2019-3921Mar 5, 2019
    risk 0.03cvss epss 0.18

    The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to a stack buffer overflow via crafted HTTP POST request sent by a remote, authenticated attacker to /GponForm/usb_Form?script/. An attacker can leverage this vulnerability to potentially…

  • CVE-2019-3920Mar 5, 2019
    risk 0.01cvss epss 0.04

    The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to authenticated command injection via crafted HTTP request sent by a remote, authenticated attacker to /GponForm/device_Form?script/.

  • CVE-2019-3917Mar 5, 2019
    risk 0.00cvss epss 0.02

    The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 allows a remote, unauthenticated attacker to enable telnetd on the router via a crafted HTTP request.

  • CVE-2019-3918Mar 5, 2019
    risk 0.00cvss epss 0.02

    The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 contains multiple hard coded credentials for the Telnet and SSH interfaces.