Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
comcast vulnerabilities and exploits
(subscribe to this query)
9
CVSSv3
CVE-2022-45938
An issue exists in Comcast Defined Technologies microeisbss up to and including 2021. An attacker can inject a stored XSS payload in the Device ID field under Inventory Management to achieve Remote Code Execution and privilege escalation..
Xfinity Comcast Defined Technologies Microeisbss
6.1
CVSSv3
CVE-2017-16836
Arris TG1682G devices with Comcast TG1682_2.0s7_PRODse 10.0.59.SIP.PC20.CT software allow Unauthenticated Stored XSS via the actionHandler/ajax_managed_services.php service parameter.
Commscope Arris Tg1682g Firmware 10.0.59.sip.pc20.ct
1 EDB exploit
5.9
CVSSv3
CVE-2017-9475
Comcast XFINITY WiFi Home Hotspot devices allow remote malicious users to spoof the identities of Comcast customers via a forged MAC address.
Comcast Xfinity Wifi Hotspot -
6.5
CVSSv3
CVE-2017-9476
The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a-CMCST); Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST); and Arris TG1682G (eMTA&DOCSIS version 10.0.132.SIP.PC20.CT, software version TG1682_2.2p7s2_PROD_...
Cisco Dpc3939 Firmware Dpc3939-p20-18-v303r20421746-170221a-cmcst
Cisco Dpc3939 Firmware Dpc3939-p20-18-v303r20421733-160420a-cmcst
Commscope Arris Tg1682g Firmware 10.0.132.sip.pc20.ct
Commscope Arris Tg1682g Firmware Tg1682 2.2p7s2 Prod Sey
6 Github repositories
6.5
CVSSv3
CVE-2017-9477
The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a-CMCST) and DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) devices allows remote malicious users to discover the CM MAC address by connecting to the device's xf...
Cisco Dpc3939 Firmware Dpc3939-p20-18-v303r20421746-170221a-cmcst
Cisco Dpc3939 Firmware Dpc3939-p20-18-v303r20421733-160420a-cmcst
5.5
CVSSv3
CVE-2017-9480
The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) devices allows local users (e.g., users who have command access as a consequence of CVE-2017-9479 exploitation) to read arbitrary files via UPnP access to /var/IGD/.
Cisco Dpc3939 Firmware Dpc3939-p20-18-v303r20421746-170221a-cmcst
9.8
CVSSv3
CVE-2017-9482
The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) devices allows remote malicious users to obtain root access to the Network Processor (NP) Linux system by enabling a TELNET daemon (through CVE-2017-9479 exploitation) and then est...
Cisco Dpc3939 Firmware Dpc3939-p20-18-v303r20421746-170221a-cmcst
9.8
CVSSv3
CVE-2017-9483
The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) devices allows Network Processor (NP) Linux users to obtain root access to the Application Processor (AP) Linux system via shell metacharacters in commands.
Cisco Dpc3939 Firmware Dpc3939-p20-18-v303r20421746-170221a-cmcst
7.5
CVSSv3
CVE-2017-9485
The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) devices allows remote malicious users to write arbitrary data to a known /var/tmp/sess_* pathname by leveraging the device's operation in UI dev mode.
Cisco Dpc3939 Firmware Dpc3939-p20-18-v303r20421746-170221a-cmcst
7.5
CVSSv3
CVE-2017-9486
The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) devices allows remote malicious users to compute password-of-the-day values via unspecified vectors.
Cisco Dpc3939 Firmware Dpc3939-p20-18-v303r20421746-170221a-cmcst
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3201
CVE-2024-4779
CVE-2024-35090
CVE-2024-5084
hard-coded
CVE-2024-4985
HTML injection
CVE-2024-33655
local file inclusion
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »