CVE-2019-7385

Name of the Vulnerable Software and Affected Versions Raisecom ISCOM HT803G-U, HT803G-W, HT803G-1GE, and HT803G GPON products with firmware version ISCOMHT803G-U 2.0.0 140521 R4.1.47.002 or below

Description An authenticated shell command injection issue has been discovered. The values of the newpass and confpass parameters in the /bin/WebMGR endpoint are used in a system call in the firmware. Because there is no user input validation, this leads to authenticated code execution on the device.

Recommendations For Raisecom ISCOM HT803G-U, HT803G-W, HT803G-1GE, and HT803G GPON products with firmware version ISCOMHT803G-U 2.0.0 140521 R4.1.47.002 or below, consider updating to a newer firmware version to resolve the issue. As a temporary workaround, restrict access to the /bin/WebMGR endpoint to minimize the risk of exploitation. Avoid using the newpass and confpass parameters in the affected endpoint until the issue is resolved.