CVE-2018-10562

Name of the Vulnerable Software and Affected Versions Dasan GPON Routers (affected versions not specified)

Description An issue was discovered on Dasan GPON home routers where Command Injection can occur via the dest host parameter in a "diag action=ping" request to a "GponForm/diag Form" URI. The router saves ping results in /tmp and transmits them to the user when the user revisits "/diag.html", making it simple to execute commands and retrieve their output.

Recommendations Dasan GPON Routers: Update the firmware to prevent command injection via the dest host parameter in diag action=ping requests. As a temporary workaround, consider restricting access to the "GponForm/diag Form" URI to minimize the risk of exploitation.