Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
10
CVSSv2

CVE-2018-19524

Published: 21/03/2019 Updated: 08/05/2019
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 1000
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Dt740 Firmware

Vulnerability Summary

An issue exists on Shenzhen Skyworth DT741 Converged Intelligent Terminal (G/EPON+IPTV) SDOTBGN1, DT721-cb SDOTBGN1, and DT741-cb SDOTBGN1 devices. A long password to the Web_passwd function allows remote malicious users to cause a denial of service (segmentation fault) or achieve unauthenticated remote code execution because of control of registers S0 through S4 and T4 through T7.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

skyworthdigital dt740_firmware sdotbgn1

skyworthdigital dt721-cb_firmware sdotbgn1

skyworthdigital dt741-cb_firmware sdotbgn1

Exploits

Exploit DB: Skyworth GPON HomeGateways and Optical Network Terminals - Stack Overflow
''' ======================================================== Unauthenticated Stack Overflow in Multiple Gpon Devices ======================================================== contents:: Table Of Content Overview ======== Title:- StackOverflow in Multiple Skyworth GPON HomeGateways and Optical Network terminals CVE-ID :- CVE-2018-19524 Author ...
Exploit DB: Skyworth GPON HomeGateways / Optical Network Stack Overflow
A stack overflow vulnerability has been identified in multiple Skyworth GPON HomeGateways and Optical Network terminals Affected products include 1DT741 Converged Intelligent Terminal (G/EPON+IPTV), 2DT741 Converged Intelligent Terminal (G/EPON+IPTV), 3DT721-cb GPON uplink home gateway (GPON+2FE+1POTS), 4DT721-cb GPON Uplink Home Gateway (GPON ...

References

CWE-20https://www.exploit-db.com/exploits/46358/https://seclists.org/bugtraq/2019/Feb/21http://seclists.org/fulldisclosure/2019/Feb/30http://packetstormsecurity.com/files/151608/Skyworth-GPON-HomeGateways-Optical-Network-Stack-Overflow.htmlhttps://www.breakthesec.com/2019/02/cve-2018-19524-stack-overflow-in.htmlhttps://s3curityb3ast.github.io/KSA-Dev-001.mdhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/46358
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977IMAPlocal usersCVE-2024-32038CVE-2023-49963CVE-2023-22869CVE-2024-31497localCVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook