CVE-2019-3917

CVE-2019-3917

Vendor Tenable
Product Alcatel Lucent I-240W-Q GPON ONT
Weakness CWE-306 · Missing auth
Published March 5, 2019
Last update September 16, 2024

CVSS base score

What the vulnerability does

01Description

The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 allows a remote, unauthenticated attacker to enable telnetd on the router via a crafted HTTP request.

Key dates

02Disclosure timeline

March 5, 2019 CVE published
September 16, 2024 Record updated