CVE-2025-54084

Sažetak

OS Command ('OS Command Injection') vulnerability in Calix GigaCenter ONT (Quantenna SoC modules) allows authenticated attackers with 'super' user credentials to execute arbitrary OS commands through improper input validation, potentially leading to full system compromise.This issue affects GigaCenter ONT: 844E, 844G, 844GE, 854GE.

Reference

https://fluidattacks.com/advisories/bacalao
https://revers3everything.com/calix-case-five-0-days-five-cves/
https://www.calix.com
https://fluidattacks.com/advisories/bacalao

CVSS

Base:	0.0
Impact:	None
Exploitability:	None

Pristup

Vektor	Složenost	Autentikacija
None	None	None

Impact

Povjerljivost	Cjelovitost	Dostupnost
None	None	None

CVSS vektor

None

Zadnje važnije ažuriranje

12-09-2025 - 14:15

Objavljeno

09-09-2025 - 21:15