Lucene search

MitreCVE-2017-9487

HistoryJul 31, 2017 - 3:29 a.m.

CVE-2017-9487

2017-07-3103:29:00

CWE-200

mitre

web.nvd.nist.gov

comcast

cisco

firmware

vulnerability

cve-2017-9487

nvd

security

remote discovery

wan ipv6

ip address

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

5.8

Confidence

High

EPSS

0.004

Percentile

72.7%

JSON

The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) and DPC3941T (firmware version DPC3941_2.5s3_PROD_sey) devices allows remote attackers to discover a WAN IPv6 IP address by leveraging knowledge of the CM MAC address.

Affected configurations

Nvd

Node

ciscodpc3939_firmwareMatchdpc3939-p20-18-v303r20421746-170221a-cmcst

AND

ciscodpc3939Match-

Node

ciscodpc3941t_firmwareMatchdpc3941_2.5s3_prod_sey

AND

ciscodpc3941tMatch-

VendorProductVersionCPE
ciscodpc3939_firmwaredpc3939-p20-18-v303r20421746-170221a-cmcstcpe:2.3:o:cisco:dpc3939_firmware:dpc3939-p20-18-v303r20421746-170221a-cmcst:*:*:*:*:*:*:*
ciscodpc3939-cpe:2.3:h:cisco:dpc3939:-:*:*:*:*:*:*:*
ciscodpc3941t_firmwaredpc3941_2.5s3_prod_seycpe:2.3:o:cisco:dpc3941t_firmware:dpc3941_2.5s3_prod_sey:*:*:*:*:*:*:*
ciscodpc3941t-cpe:2.3:h:cisco:dpc3941t:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	dpc3939_firmware	dpc3939-p20-18-v303r20421746-170221a-cmcst	cpe:2.3:o:cisco:dpc3939_firmware:dpc3939-p20-18-v303r20421746-170221a-cmcst:::::::*
cisco	dpc3939	-	cpe:2.3:h:cisco:dpc3939:-:::::::*
cisco	dpc3941t_firmware	dpc3941_2.5s3_prod_sey	cpe:2.3:o:cisco:dpc3941t_firmware:dpc3941_2.5s3_prod_sey:::::::*
cisco	dpc3941t	-	cpe:2.3:h:cisco:dpc3941t:-:::::::*

References

github.com/BastilleResearch/CableTap/blob/master/doc/advisories/bastille-30.wan0-ipv6-cm-mac.txt

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

5.8

Confidence

High

EPSS

0.004

Percentile

72.7%

JSON

Related for CVE-2017-9487