CVE-2026-45431 – Command Injection Vulnerability in GX Earth ONT Models

CVE ID :CVE-2026-45431

Published : June 4, 2026, 12:16 p.m. | 16 minutes ago

Description :This vulnerability exists in GX Earth ONT models due to improper handling of user-supplied input in multiple diagnostic functions in its web management interface. An authenticated remote attacker could exploit this vulnerability by injecting arbitrary and executing OS commands on the targeted device.

Successful exploitation of this vulnerability could allow the attacker to perform remote code execution with root privileges on the targeted device.

Severity: 8.7 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-4104 – SQLi in Akmer Informatics’ TeknoPass

CVE-2026-45432 – Cleartext Transmission of Credentials Vulnerability in GX Earth ONT Models

CVE-2026-10843 – Cloud-credential-operator: cco mint-mode credentialsrequest manifests grant account-wide iam access beyond cluster scope on aws

CVE-2026-10840 – Openshift-pipelines-operator-rh: openshift-pipelines-operator: tekton-scheduler-rolebinding grants system:authenticated write access to kueue and cert-manager resources