NVD disclosure day

Published threat advisories for May 4, 2018

CVE-2018-10562

Dasan GPON Router Command Injection Vulnerability.

Halo Surface Signal: 5 out of 5 — more likely to be public-facing.

Dasan GPON home routers are affected by a command injection vulnerability, allowing unauthorized command execution. This poses a business risk through potential disruption and data integrity issues.

NVD published: May 4, 2018 • CISA KEV

CVE advisoryKnown Exploit

CVE-2018-10561

Dasan GPON Routers Authentication Bypass Vulnerability

Halo Surface Signal: 5 out of 5 — more likely to be public-facing.

Dasan GPON routers have an authentication bypass flaw allowing unauthorized management. This impacts device integrity and data security, posing significant business risk. Exploitation involves appending text to URLs, granting attackers administrative control. The affected product is end-of-life.

NVD published: May 4, 2018 • CISA KEV