Primary

Context

V-SOL GPON/EPON OLT Platform Privilege Escalation Vulnerability

Vulnerability

A privilege escalation vulnerability has been identified in V-SOL GPON/EPON OLT Platform version 2.03. This vulnerability allows normal users to gain administrative access by manipulating the user role parameter. Exploitation involves sending a crafted HTTP POST request to the user management endpoint with the 'user_role_mod' parameter set to '1'. The vulnerability arises because the application does not properly validate user role modifications, enabling unauthorized privilege elevation.

Impact

Exploitation of this vulnerability allows normal users to gain administrative privileges on the affected OLT platform.

Reproduction

To reproduce this vulnerability, send an HTTP POST request to the user management endpoint. Include the 'user_role_mod' parameter set to '1', along with any required user information such as username and password. This can be done manually or through an automated script.

Added: Dec 24, 2025, 8:33 PM

Updated: Dec 24, 2025, 9:38 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

6.3

remediation

0.0

relevance

1.5

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

6.3

remediation

0.0

relevance

1.5

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

V-SOL GPON/EPON OLT Platform Privilege Escalation Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating