CVE-2019-3920

Published: 2019-03-05T21:29Z

Last Modified: 2024-11-21T04:42Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to authenticated command injection via crafted HTTP request sent by a remote, authenticated attacker to /GponForm/device_Form?script/. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt