—–BEGIN PGP SIGNED MESSAGE—–

Hash: SHA256

Multiple Vulnerabilities in GX Earth ONT Models

Indian – Computer Emergency Response Team (https://www.cert-in.org.in)

Severity Rating: HIGH

Systems Affected

GX Earth 2022 – version E2022 – 3.1.2A, 3.1.5AV, E2022 1.1ASL

GX Earth 1010 – version E1010-1.1ASL

Overview

Multiple vulnerabilities have been reported in GX Earth ONT models, which could allow an attacker to execute arbitrary code, obtain sensitive information and gain unauthorized access to the targeted device.

Target Audience:

End-users/Administrators of GX Earth 2022 and Earth 1010

Risk Assessment:

Risk of OS Command Injections, Man-in-the-Middle (MITM) attacks and exposure of sensitive information.

Impact Assessment:

Potential for remote code execution, information disclosure and device compromise.

Description

The GX Earth 2022 and Earth 1010 are dual-band Wi-Fi enabled GPON optical network terminal (ONTs) used for broadband fiber connectivity and web-based network management.

1. Command Injection Vulnerability ( CVE-2026-45431   )

This vulnerability exists in GX Earth ONT models due to improper handling of user-supplied input in multiple diagnostic functions in its web management interface. An authenticated remote attacker could exploit this vulnerability by injecting arbitrary and executing OS commands on the targeted device.

Successful exploitation of this vulnerability could allow the attacker to perform remote code execution with root privileges on the targeted device.

2. Cleartext Transmission of Credentials Vulnerability ( CVE-2026-45432   )

This vulnerability exists in GX Earth ONT models due to the transmission of user credentials in plaintext over HTTP in its web management interface. A remote attacker could exploit this vulnerability by intercepting network traffic to obtain sensitive authentication information, which could lead to unauthorized access to the targeted device.

3. Hardcoded Cryptographic Key Vulnerability ( CVE-2026-45433   )

This vulnerability exists in GX Earth 2022 ONT models due to the presence of hardcoded RSA private key within the device firmware. A remote attacker could exploit this vulnerability by extracting the cryptographic private key from the firmware, which could lead to decryption of HTTPS traffic and Man-in-the-Middle (MITM) attacks on the targeted device.

Credit

These vulnerabilities are reported by Anmol Bakshi.

Solution

Upgrade GX Earth 2022 to latest firmware version E2022-3.1.5A, E2022-3.1.8AV or E2022-1.2ASL.

Upgrade GX Earth 1010 to latest firmware version E1010-1.2ASL

Vendor Information

GX INDIA

https://www.gxgroup.eu/solutions

References

GX INDIA

https://www.gxgroup.eu/solutions

CVE Name

CVE-2026-45431

CVE-2026-45432

CVE-2026-45433

– —

Thanks and Regards,

CERT-In

Incident Response Help Desk

e-mail: incident@cert-in.org.in

Phone: +91-11-22902657

Toll Free Number: 1800-11-4949

Toll Free Fax : 1800-11-6969

Web: http://www.cert-in.org.in

PGP Fingerprint: A768 083E 4475 5725 B81A A379 2156 C0C0 B620 D0B4

PGP Key information:

https://www.cert-in.org.in/s2cMainServlet?pageid=CONTACTUS

Postal address:

Indian Computer Emergency Response Team (CERT-In)

Ministry of Electronics and Information Technology

Government of India

Electronics Niketan

6, C.G.O. Complex

New Delhi-110 003

—–BEGIN PGP SIGNATURE—–

iQIzBAEBCAAdFiEE6r4Iam/Ey0c/KakL3jCgcSdcys8FAmohkNwACgkQ3jCgcSdc

ys/e3xAAgUpvrS+9ka0Dxn5CGTi3jQBvfgLm2z1bGsOpunbb8eWz4MF5WS0Ma4e5

coKQ2QtdkpASk04IhRRlIGPbQ0+zom/mfwzE90nBozDWx0pnnsfbcAMzOoqQ4tIi

CYarUfpLO/Jz+wivKzTqZSNWKu09gv3La7sVQQY7/IWKosoTkcRNBOW8264poVzZ

/cNQuA/eeTqDhORcu9iBfWaY/Ml1tiSy3Zc+1LHLUy1zcOGmBWGFxz5ZOFBXkFxK

700H/E2zkFsGVY8jZETglJcwv3n0ikrR/6K2/nqyMZo9x4x1lEJGISlnlem1e0qg

pkicguUAqhc0A43GsSfR/uDh+1e+K3vADRD8KuGFd8IHUeuh8jWa3P6Y1/z5rQ7W

zqVxqBC/NDoaLZ0SpTa+hYctVo5tceiyiSYXUvzKpjkDCNwgAIF+zrBvvjJk79ID

uatwIpNqm18toZE+H90WXlM9uHFN4Qd7ZqfJjLecVQJVyLeYJ3wD/1oQqmYip0aZ

aXgAyQbKKY7SF8luPyVhPT4Mxf2vyQO31Shq1njFKfjPxU/gOnAdkBZXtnaVvydj

KPS167VOste+DkViptdHKHQV2gf6xBPgpNloroEsu15a13efxl2dX5AaBDQCzRdN

svT8Ll6cw57f4HcUTDCUrTqHGW+05P0IO0tP7BT0+bhhVejd0Lo=

=Wf7Q

—–END PGP SIGNATURE—–