GCVE - cpe:2.3:h:fiberhome:an5506-01-a:-:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:h:fiberhome:an5506-01-a:-:*:*:*:*:*:*:*

part: h version: - update: *

Vendor	Fiberhome (`0a59e44a-e318-5654-ba7c-b5848916f7d4`)
Product	An5506 01 A (`f352e229-35a0-5e37-83b8-e97549a4ccf9`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-1615`	not_vulnerable	2026-06-03 14:59:05.890861	FiberHome AN5506-01A ONU GPON NAT Submenu cross site scripting LOW (2.4) A vulnerability classified as problematic was found in FiberHome AN5506-01A ONU GPON RP2511. Affected by this vulnerability is an unknown functionality of the component NAT Submenu. The manipulation of the argument Description leads to cross site scripting. The attack can be launched remotely. The vendor was contacted early about this disclosure but did not respond in any way. Published: 2025-02-24T03:31:03.569Z Updated: 2025-02-24T11:38:36.094Z Open on db.gcve.eu Reference links https://vuldb.com/?id.296605 https://vuldb.com/?ctiid.296605 https://vuldb.com/?submit.501408	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-1614`	not_vulnerable	2026-06-03 14:59:05.890338	FiberHome AN5506-01A ONU GPON Port Forwarding Submenu portForwardingCfg cross site scripting LOW (2.4) A vulnerability classified as problematic has been found in FiberHome AN5506-01A ONU GPON RP2511. Affected is an unknown function of the file /goform/portForwardingCfg of the component Port Forwarding Submenu. The manipulation of the argument pf_Description leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. Published: 2025-02-24T03:00:13.961Z Updated: 2025-02-24T11:39:40.185Z Open on db.gcve.eu Reference links https://vuldb.com/?id.296604 https://vuldb.com/?ctiid.296604 https://vuldb.com/?submit.501365	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-1613`	not_vulnerable	2026-06-03 14:59:05.889613	FiberHome AN5506-01A ONU GPON URL Filtering Submenu URL_filterCfg cross site scripting LOW (2.4) A vulnerability was found in FiberHome AN5506-01A ONU GPON RP2511. It has been rated as problematic. This issue affects some unknown processing of the file /goform/URL_filterCfg of the component URL Filtering Submenu. The manipulation of the argument url_IP leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. Published: 2025-02-24T03:00:12.277Z Updated: 2025-02-24T11:41:00.931Z Open on db.gcve.eu Reference links https://vuldb.com/?id.296603 https://vuldb.com/?ctiid.296603 https://vuldb.com/?submit.501349	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-42912`	not_vulnerable	2026-06-03 14:45:27.891287	Details available FiberHome ONU GPON AN5506-04-F RP2617 is affected by an OS command injection vulnerability. This vulnerability allows the attacker, once logged in, to send commands to the operating system as the root user via the ping diagnostic tool, bypassing the IP address field, and concatenating OS commands with a semicolon. Published: 2021-12-16T16:54:08.000Z Updated: 2024-08-04T03:47:12.661Z Open on db.gcve.eu Reference links http://fiberhome.com http://onu.com https://medium.com/%40windsormoreira/fiberhome-an5506-os-command-injection-cve-2021-42912-10b64fd10ce2	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.