Threat Encyclopedia

Dasan.GPON.Remote.Code.Execution

description-logoDescription

This indicates an attack attempt against a Remote Code Execution vulnerability in Dasan GPON.
The vulnerability is due to insufficient sanitizing of user supplied inputs in the application. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application, via a crafted request.

affected-products-logoAffected Products

ZNID-GPON-25xx and certain H640-series ONTs

Impact logoImpact

Device Compromise: Remote attackers can gain control of vulnerable devices.

recomended-action-logoRecommended Actions

Currently no official patch, you can patch it here
https://www.vpnmentor.com/tools/gpon-router-antidote-patch/