CVE-2026-45431

UNKNOWN 0.0

Command Injection Vulnerability in GX Earth ONT Models

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

This vulnerability exists in GX Earth ONT models due to improper handling of user-supplied input in multiple diagnostic functions in its web management interface. An authenticated remote attacker could exploit this vulnerability by injecting arbitrary and executing OS commands on the targeted device. Successful exploitation of this vulnerability could allow the attacker to perform remote code execution with root privileges on the targeted device.

CWE	CWE-78
Vendor	gx india
Product	gx earth 2022
Published	Jun 4, 2026
Last Updated	Jun 4, 2026

Stay Ahead of the Next One

Get instant alerts for gx india gx earth 2022

Be the first to know when new unknown vulnerabilities affecting gx india gx earth 2022 are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

GX INDIA / GX Earth 2022

version E2022 - 3.1.2A version E2022 - 3.1.5AV version E2022 - 1.1ASL

GX INDIA / GX Earth 1010

version E1010-1.1ASL

References

NVD ↗ CVE.org ↗ EPSS Data ↗

cert-in.org.in: https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2026-0288

Credits

This vulnerability is reported by Anmol Bakshi.