CVE-2019-25284

V-SOL GPON/EPON OLT Platform V2.03.62R_IPv6 v2.03 Reflected Cross-Site Scripting Vulnerability

CVSS 5.1 MEDIUMEPSS 0.2%CWE-79

Vexday Risk Score

13Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS 5.1EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

07 Jan 2026Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

V-SOL GPON/EPON OLT Platform v2.03 contains multiple reflected cross-site scripting vulnerabilities due to improper input sanitization in various script parameters. Attackers can exploit these vulnerabilities by injecting malicious HTML and script code to execute arbitrary scripts in a victim's browser session.

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

Affected products

Guangzhou V · V-SOL GPON/EPON OLT Platform

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://cxsecurity.com/issue/WLB-2019090194 https://exchange.xforce.ibmcloud.com/vulnerabilities/167864 https://packetstormsecurity.com/files/154631 https://www.vsolcn.com/https://www.zeroscience.mk/en/vulnerabilities/ZSL-2019-5537.php