What is CVE-2018-19524?

CVE-2018-19524 is a vulnerability in N/a. Published 2019-03-17.

Is CVE-2018-19524 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2018-19524

An issue was discovered on Shenzhen Skyworth DT741 Converged Intelligent Terminal (G/EPON+IPTV) SDOTBGN1, DT721-cb SDOTBGN1, and DT741-cb SDOTBGN1 devices. A long password to the Web_passwd function allows remote attackers to cause a denia…

EPSS: 0.505 (98.8th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

References

20190210 KSA-DEV-001: CVE-2018-19524 : StackOverflow in Multiple Skyworth GPON HomeGateways and Optical Network terminals. (mailing-list, x_refsource_BUGTRAQ)
46358 (exploit, x_refsource_EXPLOIT-DB)
s3curityb3ast.github.io/KSA-Dev-001.md (x_refsource_MISC)
packetstormsecurity.com/files/151608/Skyworth-GPON-HomeGateways-Optical-Network… (x_refsource_MISC)
20190212 KSA-DEV-001: CVE-2018-19524 : StackOverflow in Multiple Skyworth GPON HomeGateways and Optical Network terminals. (mailing-list, x_refsource_FULLDISC)
www.breakthesec.com/2019/02/cve-2018-19524-stack-overflow-in.html (x_refsource_MISC)

Frequently asked questions

What is CVE-2018-19524?: CVE-2018-19524 is a vulnerability in N/a. Published 2019-03-17.
Is CVE-2018-19524 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.