PT-2025-53325 · V Sol · V-Sol Gpon/Epon Olt Platform
Published
2025-12-24
·
Updated
2025-12-24
·
CVE-2019-25239
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
V-SOL GPON/EPON OLT Platform version 2.03
Description
The software contains an information disclosure issue that allows unauthorized access to configuration files. Attackers can obtain sensitive configuration data by sending HTTP GET requests to the
usrcfg.conf API endpoint. This access may lead to authentication bypass and potential system compromise.Recommendations
Apply necessary restrictions to the
usrcfg.conf API endpoint to prevent unauthorized access.Exploit
Fix
Files Accessible to External Parties
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
V-Sol Gpon/Epon Olt Platform