Dasannetworks H660rm Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Dasannetworks H660rm Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2019-9974 — CVSS 9.1 (critical): diag_tool.cgi on DASAN H660RM GPON routers with firmware 1.03-0022 lacks any authorization check, which allows remote attackers to run a…
CVE-2019-9976 — CVSS 8.8 (high): The Boa server configuration on DASAN H660RM devices with firmware 1.03-0022 logs POST data to the /tmp/boa-temp file, which allows…
CVE-2019-9975 — CVSS 7.5 (high): DASAN H660RM devices with firmware 1.03-0022 use a hard-coded key for logs encryption. Data stored using this key can be decrypted by…