Published: 17/12/2016 Updated: 21/12/2016

CVSS v2 Base Score: 7.9 | Impact Score: 10 | Exploitability Score: 5.5

CVSS v3 Base Score: 8 | Impact Score: 5.9 | Exploitability Score: 2.1

VMScore: 795

Vector: AV:A/AC:M/Au:N/C:C/I:C/A:C

Subscribe to Xfinity Gateway Router Dpc3941t Firmware

CSRF vulnerability on Technicolor TC dpc3941T (formerly Cisco dpc3941T) devices with firmware dpc3941-P20-18-v303r20421733-160413a-CMCST allows an malicious user to change the Wi-Fi password, open the remote management interface, or reset the router.

Vulnerable Product	Search on Vulmon	Subscribe to Product
technicolor xfinity_gateway_router_dpc3941t_firmware dpc3941-p20-18-v303r20421733-160413a-cmcst

XFINITY Gateway Technicolor DPC3941T wifi password changing cross site request forgery proof of concept code ...

# Exploit Title: CSRF XFINITY Gateway product Technicolor(previously Cisco) DPC3941T # Date: 09/08/2016 # Exploit Author: Ayushman Dutta # Version: dpc3941-P20-18-v303r20421733-160413a-CMCST # CVE : CVE-2016-7454 The Device DPC3941T is vulnerable to CSRF and has no security on the entire admin panel for it Some of the links are at: <IP Addre ...

CWE-352 https://packetstormsecurity.com/files/140121/XFINITY-Gateway-Technicolor-DPC3941T-Cross-Site-Request-Forgery.html http://www.securityfocus.com/bid/94881 https://nvd.nist.gov https://packetstormsecurity.com/files/140121/XFINITY-Gateway-Technicolor-DPC3941T-Cross-Site-Request-Forgery.html https://www.exploit-db.com/exploits/40982/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2016-7454

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect