Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arris vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-5196
A vulnerability classified as critical has been found in Arris VAP2500 08.50. This affects an unknown part of the file /tools_command.php. The manipulation of the argument cmb_header/txt_command leads to command injection. It is possible to initiate the attack remotely. The explo...
8.1
CVSSv3
CVE-2017-14116
The AT&T U-verse 9.2.2h0d83 firmware for the Arris NVG599 device, when IP Passthrough mode is not used, configures WAN access to a caserver https service with the tech account and an empty password, which allows remote malicious users to obtain root privileges by establishing...
Att U-verse Firmware 9.2.2h0d83
8.1
CVSSv3
CVE-2017-14115
The AT&T U-verse 9.2.2h0d83 firmware for the Arris NVG589 and NVG599 devices, when IP Passthrough mode is not used, configures ssh-permanent-enable WAN SSH logins to the remotessh account with the 5SaP9I26 password, which allows remote malicious users to access a "Termin...
Att U-verse Firmware 9.2.2h0d83
6.6
CVSSv3
CVE-2018-10989
Arris Touchstone Telephony Gateway TG1682G 9.1.103J6 devices are distributed by some ISPs with a default password of "password" for the admin account that is used over an unencrypted http://192.168.0.1 connection, which might allow remote malicious users to bypass inten...
Commscope Arris Tg1682g Firmware 9.1.103j6
8.1
CVSSv3
CVE-2017-10793
The AT&T U-verse 9.2.2h0d83 firmware for the Arris NVG589, NVG599, and unspecified other devices, when IP Passthrough mode is not used, configures an sbdc.ha WAN TCP service on port 61001 with the bdctest account and the bdctest password, which allows remote malicious users t...
Att U-verse Firmware 9.2.2h0d83
7.5
CVSSv3
CVE-2017-9492
The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a-CMCST); Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST); Cisco DPC3939B (firmware version dpc3939b-v303r204217-150321a-CMCST); Cisco DPC3941T (firmware version...
Cisco Dpc3939 Firmware Dpc3939-p20-18-v303r20421733-160420a-cmcst
Cisco Dpc3939 Firmware Dpc3939-p20-18-v303r20421746-170221a-cmcst
Cisco Dpc3939b Firmware Dpc3939b-v303r204217-150321a-cmcst
Cisco Dpc3941t Firmware Dpc3941 2.5s3 Prod Sey
Commscope Arris Tg1682g Firmware 10.0.132.sip.pc20.ct
Commscope Arris Tg1682g Firmware Tg1682 2.2p7s2 Prod Sey
5.3
CVSSv3
CVE-2019-16651
An issue exists on Virgin Media Super Hub 3 (based on ARRIS TG2492) devices. Because their SNMP commands have insufficient protection mechanisms, it is possible to use JavaScript and DNS rebinding to leak the WAN IP address of a user (if they are using certain VPN implementations...
Virginmedia Super Hub 3 Firmware -
5.3
CVSSv3
CVE-2017-9491
The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a-CMCST); Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST); Cisco DPC3939B (firmware version dpc3939b-v303r204217-150321a-CMCST); Cisco DPC3941T (firmware version...
Cisco Dpc3939 Firmware Dpc3939-p20-18-v303r20421733-160420a-cmcst
Cisco Dpc3939 Firmware Dpc3939-p20-18-v303r20421746-170221a-cmcst
Cisco Dpc3939b Firmware Dpc3939b-v303r204217-150321a-cmcst
Cisco Dpc3941t Firmware Dpc3941 2.5s3 Prod Sey
Commscope Arris Tg1682g Firmware 10.0.132.sip.pc20.ct
Commscope Arris Tg1682g Firmware Tg1682 2.2p7s2 Prod Sey
8
CVSSv3
CVE-2018-10990
On Arris Touchstone Telephony Gateway TG1682G 9.1.103J6 devices, a logout action does not immediately destroy all state on the device related to the validity of the "credential" cookie, which might make it easier for malicious users to obtain access at a later time (e.g...
Commscope Arris Tg1682g Firmware 9.1.103j6
9.8
CVSSv3
CVE-2017-9521
The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a-CMCST); Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST); Cisco DPC3939B (firmware version dpc3939b-v303r204217-150321a-CMCST); Cisco DPC3941T (firmware version...
Cisco Dpc3939 Firmware Dpc3939-p20-18-v303r20421733-160420a-cmcst
Cisco Dpc3939 Firmware Dpc3939-p20-18-v303r20421746-170221a-cmcst
Cisco Dpc3939b Firmware Dpc3939b-v303r204217-150321a-cmcst
Cisco Dpc3941t Firmware Dpc3941 2.5s3 Prod Sey
Commscope Arris Tg1682g Firmware 10.0.132.sip.pc20.ct
Commscope Arris Tg1682g Firmware Tg1682 2.2p7s2 Prod Sey
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »