Vulnerability Database

308,379

Total vulnerabilities in the database

CVE-2025-54084

OS Command ('OS Command Injection') vulnerability in Calix GigaCenter ONT (Quantenna SoC modules) allows authenticated attackers with 'super' user credentials to execute arbitrary OS commands through improper input validation, potentially leading to full system compromise.This issue affects GigaCenter ONT: 844E, 844G, 844GE, 854GE.

Published: Sep 9, 2025
Updated: Nov 16, 2025
CVE: CVE-2025-54084
Exploit:

No technical information available.

CWEs:

CWE-78

OWASP TOP 10:

A1 - Injection

Affected Software
References

No affected software listed.

https://fluidattacks.com/advisories/bacalao
https://revers3everything.com/calix-case-five-0-days-five-cves/
https://www.calix.com

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo