cpe:/o:dasannetworks:gpon_router_firmware:- CVE-2018-10561 2018-05-03T23:29:00.227-04:00 2019-03-04T13:39:11.630-05:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2019-03-04T09:42:37.560-05:00 BID 107053 EXPLOIT-DB 44576 MISC https://www.vpnmentor.com/blog/critical-vulnerability-gpon-router/ An issue was discovered on Dasan GPON home routers. It is possible to bypass authentication simply by appending "?images" to any URL of the device that requires authentication, as demonstrated by the /menu.html?images/ or /GponForm/diag_FORM?images/ URI. One can then manage the device.