Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Insufficient Input Validation on WEBUI in Nokia ONT/Beacon product
Vulnerability Description
The unified WEBUI application of the ONT/Beacon device contains an input handling flaw that allows authenticated users to trigger unintended system-level command execution. Due to insufficient validation of user-supplied data, a low-privileged authenticated attacker may be able to execute arbitrary commands on the underlying ONT/Beacon operating system, potentially impacting the confidentiality, integrity, and availability of the device.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Nokia ONT 安全漏洞
Vulnerability Description
Nokia ONT是芬兰诺基亚(Nokia)公司的一个光纤网络终端设备。 Nokia ONT存在安全漏洞,该漏洞源于其统一的WEBUI应用程序存在输入处理缺陷,可能导致经过身份验证的低权限用户执行任意系统级命令,影响设备的机密性、完整性和可用性。
CVSS Information
N/A
Vulnerability Type
N/A