Raisecom ISCOM HT803G GPON

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:h:raisecom:iscom_ht803g_gpon:-:*:*:*:*:*:*:*

part: h version: - update: *

VendorRaisecom (1f5e070d-6da4-58a1-acf5-87a08ad821d6)
ProductIscom Ht803G Gpon (730fb127-a6ab-507e-b1ca-2434d8f67c44)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2019-7385 not_vulnerable 2026-06-03 14:40:41.758413 Details available
An authenticated shell command injection issue has been discovered in Raisecom ISCOM HT803G-U, HT803G-W, HT803G-1GE, and HT803G GPON products with the firmware version ISCOMHT803G-U_2.0.0_140521_R4.1.47.002 or below, The values of the newpass and confpass parameters in /bin/WebMGR are used in a system call in the firmware. Because there is no user input validation, this leads to authenticated code execution on the device.
Published: 2019-03-17T19:13:51.000Z
Updated: 2024-08-04T20:46:46.279Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2019-7384 not_vulnerable 2026-06-03 14:40:41.757702 Details available
An authenticated shell command injection issue has been discovered in Raisecom ISCOM HT803G-U, HT803G-W, HT803G-1GE, and HT803G GPON products with the firmware version ISCOMHT803G-U_2.0.0_140521_R4.1.47.002 or below. The value of the fmgpon_loid parameter is used in a system call inside the boa binary. Because there is no user input validation, this leads to authenticated code execution on the device.
Published: 2019-03-17T19:07:36.000Z
Updated: 2024-08-04T20:46:46.220Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.