Remote Code Execution Vulnerability in Alcatel Lucent I-240W-Q GPON ONT
CVE-2019-3917
7.5HIGH
What is CVE-2019-3917?
The Alcatel Lucent I-240W-Q GPON ONT, when operating on firmware version 3FE54567BOZJ19, has a vulnerability that allows an attacker to remotely enable telnetd without authentication. This can be exploited via a specially crafted HTTP request, potentially giving an attacker unauthorized access to the device.
Affected Version(s)
Alcatel Lucent I-240W-Q GPON ONT Firmware version 3FE54567BOZJ19