exploitDog

CVE-2014-4863

Опубликовано: 05 сент. 2014

Источник: nvd

CVSS2: 5

EPSS Средний

Описание

The Arris Touchstone DG950A cable modem with software 7.10.131 has an SNMP community of public, which allows remote attackers to obtain sensitive password, key, and SSID information via an SNMP request.

Ссылки

http://www.kb.cert.org/vuls/id/855836
US Government Resource
https://community.rapid7.com/community/metasploit/blog/2014/08/21/more-snmp-information-leaks-cve-2014-4862-and-cve-2014-4863
Exploit
http://www.kb.cert.org/vuls/id/855836
US Government Resource
https://community.rapid7.com/community/metasploit/blog/2014/08/21/more-snmp-information-leaks-cve-2014-4862-and-cve-2014-4863
Exploit

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:arris:touchstone_dg950a_software:7.10.131:*:*:*:*:*:*:*

cpe:2.3:h:arris:touchstone_dg950a:-:*:*:*:*:*:*:*

EPSS

Процентиль: 96%

0.23552

Средний

5 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-vrq2-jwj7-6vrf

github

больше 3 лет назад

The Arris Touchstone DG950A cable modem with software 7.10.131 has an SNMP community of public, which allows remote attackers to obtain sensitive password, key, and SSID information via an SNMP request.

EPSS

Процентиль: 96%

0.23552

Средний

5 Medium

CVSS2

Дефекты

CWE-200