Lucene search
HistoryNov 28, 2014 - 3:59 p.m.
CVE-2014-8423
cve-2014-8423
vulnerability
arris vap2500
management portal
remote attackers
arbitrary commands
fw08.41
nvd
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.7 High
AI Score
Confidence
Low
0.409 Medium
EPSS
Percentile
97.3%
Unspecified vulnerability in the management portal in ARRIS VAP2500 before FW08.41 allows remote attackers to execute arbitrary commands via unknown vectors.
Affected configurations
Node
arrisvap2500_firmwareRange≤08.41
| CPE | Name | Operator | Version |
|---|---|---|---|
| arris:vap2500_firmware | arris vap2500 firmware | le | 08.41 |
Related
zdi
zdi
ARRIS VAP2500 Management Portal Remote Command Execution Vulnerability
2014-11-25 00:00:00
nvd
nvd
CVE-2014-8423
2014-11-28 15:59:03
zdt
zdt
ARRIS VAP2500 Management Portal Remote Command Execution Vulnerability
2014-11-30 00:00:00
Arris VAP2500 Command Execution Exploit
2015-01-22 00:00:00
cvelist
cvelist
CVE-2014-8423
2014-11-28 15:00:00
prion
prion
Code injection
2014-11-28 15:59:00
packetstorm
packetstorm
Arris VAP2500 tools_command.php Command Execution
2015-01-22 00:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.7 High
AI Score
Confidence
Low
0.409 Medium
EPSS
Percentile
97.3%
Related for CVE-2014-8423