Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-cfpm-r69w-j97p

Опубликовано: 24 дек. 2025
Источник: github
Github: Не прошло ревью
CVSS4: 5.1
CVSS3: 4.3

Описание

V-SOL GPON/EPON OLT Platform 2.03 contains a cross-site request forgery vulnerability that allows attackers to perform administrative actions without user consent. Attackers can craft malicious web pages to create admin users, enable SSH, or modify system settings by tricking authenticated administrators into loading a specially crafted page.

V-SOL GPON/EPON OLT Platform 2.03 contains a cross-site request forgery vulnerability that allows attackers to perform administrative actions without user consent. Attackers can craft malicious web pages to create admin users, enable SSH, or modify system settings by tricking authenticated administrators into loading a specially crafted page.

Ссылки

EPSS

Процентиль: 4%
0.00017
Низкий

5.1 Medium

CVSS4

4.3 Medium

CVSS3

CVE ID

CVE-2019-25238

Дефекты

CWE-352

Связанные уязвимости

nvd логотип

CVE-2019-25238

CVSS3: 4.3
nvd
около 1 месяца назад

V-SOL GPON/EPON OLT Platform 2.03 contains a cross-site request forgery vulnerability that allows attackers to perform administrative actions without user consent. Attackers can craft malicious web pages to create admin users, enable SSH, or modify system settings by tricking authenticated administrators into loading a specially crafted page.

EPSS

Процентиль: 4%
0.00017
Низкий

5.1 Medium

CVSS4

4.3 Medium

CVSS3

CVE ID

CVE-2019-25238

Дефекты

CWE-352