CVE-2018-10562CISA KEV: Actively Exploited

Dasan GPON Routers Command Injection Vulnerability

Published Mar 31, 2022·Updated Mar 31, 2022

Description

Dasan GPON Routers contain an authentication bypass vulnerability. When combined with CVE-2018-10561, exploitation can allow an attacker to perform remote code execution.

Public Exploits & PoCs7 found

PoC: GPON

Exploit for Remote Code Execution on GPON home routers (CVE-2018-10562) written in Python. Initially disclosed by VPNMentor (https://www.vpnmentor.com/blog/critical-vulnerability-gpon-router/), kudos for their work.

210

PoC: Pingpon-Exploit

Exploit for Mass Remote Code Execution on GPON home routers (CVE-2018-10562) obtained from Shodan.

21

PoC: GPON_RCE

Exploit for Remote Code Execution on GPON home routers (CVE-2018-10562) written in Python.

4

PoC: CVE-2018-10562

Exploit for CVE-2018-10562

3

PoC: GPON-LOADER

Exploit loader for Remote Code Execution w/ Payload on GPON Home Gateway devices (CVE-2018-10562) written in Python.

1

PoC: backdoor.mirai.helloworld

backdoor.mirai.helloworld cve2018-20561, cve-2018-10562

PoC: GPON

Python exploit for Remote Code Executuion on GPON home routers (CVE-2018-10562). Initially disclosed by VPNMentor (https://www.vpnmentor.com/blog/critical-vulnerability-gpon-router/), kudos for their work.

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free