CVE-2026-31196 | THREATINT

Description

The traceroute diagnostic handler in /bin/httpd_clientside for ALTICE LABS / SFR France GR140DG and GR140IG fibre CPE/Router/Gateway, inserts unsanitized user input into a system() call, allowing authenticated remote attackers to execute arbitrary commands as root via crafted destAddr parameters using shell command substitution.

PUBLISHED Reserved 2026-03-09 | Published 2026-05-05 | Updated 2026-05-06 | Assigner mitre

References

altice.com

gr140dg.com

xerod.ai/advisories/XEROD-2026-0002

cve.org (CVE-2026-31196)

nvd.nist.gov (CVE-2026-31196)

Download JSON