10
CVSSv2

CVE-2014-3306

Published: 18/07/2014 Updated: 12/01/2017
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
VMScore: 890
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

The web server on Cisco DPC3010, DPC3212, DPC3825, DPC3925, DPQ3925, EPC3010, EPC3212, EPC3825, and EPC3925 Wireless Residential Gateway products allows remote malicious users to execute arbitrary code via a crafted HTTP request, aka Bug ID CSCup40808.

Vulnerable Product Search on Vulmon Subscribe to Product

cisco epc3010 -

cisco dpc3925 -

cisco epc3925 -

cisco dpc3010 -

cisco dpc3825 -

cisco epc3212 -

cisco epc3825 -

cisco dpc3212 -

cisco dpq3925 -

Vendor Advisories

A vulnerability in the web server used in multiple Cisco Wireless Residential Gateway products could allow an unauthenticated, remote attacker to exploit a buffer overflow and cause arbitrary code execution The vulnerability is due to incorrect input validation for HTTP requests An attacker could exploit this vulnerability by sending a crafted H ...