Primary

Context

Adtran 411 ONT Command Injection Vulnerability Allowing Privilege Escalation to Root

Vulnerability

A command injection vulnerability has been identified in the web interface of the Adtran 411 ONT, specifically in firmware version L80.00.0011.M2. This vulnerability allows attackers to escalate privileges to root and execute arbitrary commands. The issue was discovered during a security audit, which also noted weak user passwords and the ability for unprivileged users to access a configuration file containing the admin password.

Impact

Exploitation of this vulnerability allows for unauthorized command execution with root privileges.

Remediation

Users can update to Adtran firmware version 24.3 to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

8.4

remediation

7.7

relevance

0.0

threat

4.9

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

8.4

remediation

7.7

relevance

0.0

threat

4.9

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Adtran 411 ONT Command Injection Vulnerability Allowing Privilege Escalation to Root

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating