CVE-2019-7384: OS Command Injection
First published: Sun Mar 17 2019(Updated: )
An authenticated shell command injection issue has been discovered in Raisecom ISCOM HT803G-U, HT803G-W, HT803G-1GE, and HT803G GPON products with the firmware version ISCOMHT803G-U_2.0.0_140521_R4.1.47.002 or below. The value of the fmgpon_loid parameter is used in a system call inside the boa binary. Because there is no user input validation, this leads to authenticated code execution on the device.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Raisecom ISCOM HT803G GPON Firmware | <=iscomht803g-u_2.0.0_140521_r4.1.47.002 | |
| Raisecom ISCOM HT803G GPON Firmware | ||
| All of | ||
| Raisecom ISCOM HT803G-W | <iscomht803g-u_2.0.0_140521_r4.1.47.002 | |
| Raisecom Iscom Ht803g-w Firmware | ||
| All of | ||
| Raisecom ISCOM HT803G GPON Firmware | <iscomht803g-u_2.0.0_140521_r4.1.47.002 | |
| Raisecom ISCOM HT803G GPON Firmware | ||
| All of | ||
| Raisecom ISCOM HT803G GPON | <iscomht803g-u_2.0.0_140521_r4.1.47.002 | |
| Raisecom ISCOM HT803G GPON Firmware | ||
| Raisecom ISCOM HT803G GPON Firmware | <=iscomht803g-u_2.0.0_140521_r4.1.47.002 | |
| Raisecom ISCOM HT803G GPON Firmware | ||
| Raisecom ISCOM HT803G-W | <iscomht803g-u_2.0.0_140521_r4.1.47.002 | |
| Raisecom Iscom Ht803g-w Firmware | ||
| Raisecom ISCOM HT803G GPON Firmware | <iscomht803g-u_2.0.0_140521_r4.1.47.002 | |
| Raisecom ISCOM HT803G GPON Firmware | ||
| Raisecom ISCOM HT803G GPON | <iscomht803g-u_2.0.0_140521_r4.1.47.002 | |
| Raisecom ISCOM HT803G GPON Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://packetstormsecurity.com/files/151649/Raisecom-Technology-GPON-ONU-HT803G-07-Command-Injection.html
- http://seclists.org/fulldisclosure/2019/Feb/33
- http://www.securityfocus.com/bid/107033
- https://s3curityb3ast.github.io/KSA-Dev-005.md
- https://www.breakthesec.com/2019/02/cve-2019-7384-authenticated-remote-code.html
Frequently Asked Questions
What is the severity of CVE-2019-7384?
CVE-2019-7384 is classified as a high severity vulnerability due to the potential for authenticated shell command injection.
How do I fix CVE-2019-7384?
To fix CVE-2019-7384, update the firmware of affected Raisecom ISCOM HT803G products to a version above ISCOMHT803G-U_2.0.0_140521_R4.1.47.002.
Which products are affected by CVE-2019-7384?
CVE-2019-7384 affects the Raisecom ISCOM HT803G-U, HT803G-W, HT803G-1GE, and HT803G GPON products running vulnerable firmware.
What kind of vulnerability is CVE-2019-7384?
CVE-2019-7384 is an authenticated shell command injection vulnerability that can be exploited through specific system calls.
Is CVE-2019-7384 remotely exploitable?
CVE-2019-7384 requires authenticated access to the devices, making it less likely to be exploited remotely without credentials.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/severity
- agent/references
- agent/first-publish-date
- agent/description
- agent/author
- agent/last-modified-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/raisecom
- canonical/raisecom iscom ht803g gpon firmware
- version/raisecom iscom ht803g gpon firmware/iscomht803g-u_2.0.0_140521_r4.1.47.002
- canonical/raisecom iscom ht803g-w
- canonical/raisecom iscom ht803g-w firmware
- canonical/raisecom iscom ht803g gpon