FiberHome AN5506-02-B Firmware RP2521
Approved changes feed: RSS · Atom
cpe:2.3:o:fiberhome:an5506-02-b_firmware:rp2521:*:*:*:*:*:*:*
part: o version: rp2521 update: *
| Vendor | Fiberhome (0a59e44a-e318-5654-ba7c-b5848916f7d4) |
|---|---|
| Product | An5506 02 B Firmware (a0cea9af-25e2-5778-a1c7-151ef57cf5d4) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2022-38814 |
vulnerable | 2026-06-03 14:47:50.545748 |
Details available
A stored cross-site scripting (XSS) vulnerability in the auth_settings component of FiberHome AN5506-02-B vRP2521 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the sncfg_loid text field.
Published: 2022-09-15T19:34:38.000Z
Updated: 2024-08-03T11:02:14.631Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-42912 |
vulnerable | 2026-06-03 14:45:27.893272 |
Details available
FiberHome ONU GPON AN5506-04-F RP2617 is affected by an OS command injection vulnerability. This vulnerability allows the attacker, once logged in, to send commands to the operating system as the root user via the ping diagnostic tool, bypassing the IP address field, and concatenating OS commands with a semicolon.
Published: 2021-12-16T16:54:08.000Z
Updated: 2024-08-04T03:47:12.661Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.