Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
V-SOL GPON/EPON OLT Platform 2.03 Unauthenticated Configuration Download
Vulnerability Description
V-SOL GPON/EPON OLT Platform 2.03 contains an unauthenticated information disclosure vulnerability that allows attackers to download configuration files via direct object reference. Attackers can retrieve sensitive configuration data by sending HTTP GET requests to the usrcfg.conf endpoint, potentially enabling authentication bypass and system access.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
对外部实体的文件或目录可访问
Vulnerability Title
V-SOL GPON/EPON OLT Platform 安全漏洞
Vulnerability Description
V-SOL GPON/EPON OLT Platform是中国芯德(V-SOL)公司的一个光线路终端管理平台。 V-SOL GPON/EPON OLT Platform 2.03版本存在安全漏洞,该漏洞源于未经验证的信息泄露,可能导致下载配置文件。
CVSS Information
N/A
Vulnerability Type
N/A