Fon · Fon2601E-Re · CVE-2019-6015
**Name of the Vulnerable Software and Affected Versions**
FON2601E-SE, FON2601E-RE, FON2601E-FSW-S, and FON2601E-FSW-B versions 1.1.7 and earlier
**Description**
The issue allows FON routers to behave as open resolvers, which can be exploited for DNS amplification attacks against other entities.
**Recommendations**
For FON2601E-SE, FON2601E-RE, FON2601E-FSW-S, and FON2601E-FSW-B versions 1.1.7 and earlier, update the firmware to a version later than 1.1.7 to resolve the issue.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.