Secnigma

Name of the Vulnerable Software and Affected Versions: OptiLink ONT1GEW GPON router firmware versions prior to V2.1.11 X101 Build 1127.190306 Description: An OS command injection issue exists due to the router's web management interface failing to properly sanitize user input in the `target addr` parameter of the "formTracert" and "formPing" administrative endpoints. This allows an authenticated attacker to inject arbitrary operating system commands, which are executed with root privileges, leading to remote code execution. Successful exploitation enables full compromise of the device. Recommendations: For OptiLink ONT1GEW GPON router firmware versions prior to V2.1.11 X101 Build 1127.190306, consider disabling the "formTracert" and "formPing" administrative endpoints as a temporary workaround until a patch is available. Restrict access to these endpoints to minimize the risk of exploitation. Avoid using the `target addr` parameter in the affected endpoints until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.