CVE-2018-10562
Dasan GPON Routers Command Injection Vulnerability
CVSS
—
No CVSS
EPSS
99.9%
p100
KEV
YES
Mar 31, 2022
Exploit Today
80
0-100
Published: — · Last modified: —
99.9%EPSS · 30 days100.0%
2026-06-302026-07-16
Product
Dasan / Gigabit Passive Optical Network (GPON) Routers
Vulnerability
Dasan GPON Routers Command Injection Vulnerability
Added to KEV
Mar 31, 2022
Remediate by
Apr 21, 2022
Known ransomware use
Yes
Summary description
Dasan GPON Routers contain an authentication bypass vulnerability. When combined with CVE-2018-10561, exploitation can allow an attacker to perform remote code execution.
Required action
The impacted product is end-of-life and should be disconnected if still in use.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2018-10562
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2018-10561—99.8%
KEV—80Dasan GPON Routers Authentication Bypass Vulnerability—