CVE Published: 05/03/2019 |
CVE Updated: 17/09/2024 |
CVE Year: 2019 Source: tenable |
Vendor: Tenable |
Product: Alcatel Lucent I-240W-Q GPON ONT Status : PUBLISHED
CVE-2019-3921 Description
The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to a stack buffer overflow via crafted HTTP POST request sent by a remote, authenticated attacker to /GponForm/usb_Form?script/. An attacker can leverage this vulnerability to potentially execute arbitrary code.