Iscom Ht803G W Firmware

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:o:raisecom:iscom_ht803g-w_firmware:*:*:*:*:*:*:*:*

part: o version: * update: *

VendorRaisecom (1f5e070d-6da4-58a1-acf5-87a08ad821d6)
ProductIscom Ht803G W Firmware (7c07d122-4741-5cd7-a8c5-4318156f5c65)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2019-7385 vulnerable 2026-06-03 14:40:41.758327 Details available
An authenticated shell command injection issue has been discovered in Raisecom ISCOM HT803G-U, HT803G-W, HT803G-1GE, and HT803G GPON products with the firmware version ISCOMHT803G-U_2.0.0_140521_R4.1.47.002 or below, The values of the newpass and confpass parameters in /bin/WebMGR are used in a system call in the firmware. Because there is no user input validation, this leads to authenticated code execution on the device.
Published: 2019-03-17T19:13:51.000Z
Updated: 2024-08-04T20:46:46.279Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2019-7384 vulnerable 2026-06-03 14:40:41.754384 Details available
An authenticated shell command injection issue has been discovered in Raisecom ISCOM HT803G-U, HT803G-W, HT803G-1GE, and HT803G GPON products with the firmware version ISCOMHT803G-U_2.0.0_140521_R4.1.47.002 or below. The value of the fmgpon_loid parameter is used in a system call inside the boa binary. Because there is no user input validation, this leads to authenticated code execution on the device.
Published: 2019-03-17T19:07:36.000Z
Updated: 2024-08-04T20:46:46.220Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.