Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2017-14116
HistorySep 03, 2017 - 7:00 p.m.

CVE-2017-14116

2017-09-0319:00:00
mitre
www.cve.org

8.1 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

81.1%

JSON

The AT&T U-verse 9.2.2h0d83 firmware for the Arris NVG599 device, when IP Passthrough mode is not used, configures WAN access to a caserver https service with the tech account and an empty password, which allows remote attackers to obtain root privileges by establishing a session on port 49955 and then installing new software, such as BusyBox with “nc -l” support.

Related

nvd 1
prion 1
cve 1
nessus 1
nvd
nvd
CVE-2017-14116
2017-09-03 19:29:00
prion
prion
Code injection
2017-09-03 19:29:00
cve
cve
CVE-2017-14116
2017-09-03 19:29:00
nessus
nessus
AT&T U-verse Arris Modems NVG589 / NVG599 / 5268AC Multiple Vulnerabilities (SharknATTo)
2017-09-01 00:00:00

8.1 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

81.1%

JSON
Related for CVELIST:CVE-2017-14116
nvd1prion1cve1nessus1