CVE-2019-3920

CVE-2019-3920

Vendor Tenable

Product Alcatel Lucent I-240W-Q GPON ONT

Weakness CWE-78

Published March 5, 2019

Last update September 17, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

The Alcatel Lucent I-240W-Q GPON ONT using firmware version 3FE54567BOZJ19 is vulnerable to authenticated command injection via crafted HTTP request sent by a remote, authenticated attacker to /GponForm/device_Form?script/.

Key dates

02Disclosure timeline

March 5, 2019 CVE published

September 17, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2019-3920 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/78.html

Related vulnerabilities

01Description

02Disclosure timeline

03References

04Related CVE