3 matches found
Arris Routers Command Injection (CVE-2022-26990; CVE-2022-26991; CVE-2022-26992; CVE-2022-26993; CVE-2022-26994; CVE-2022-26995; CVE-2022-26996; CVE-2022-26997; CVE-2022-26998; CVE-2022-26999; CVE-2022-27000; CVE-2022-27001; CVE-2022-27002)
A command injection vulnerability exists in Arris Routers. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
CVE-2022-26991
creationtimestamp| type| source ---|---|--- 2022-03-16 01:19:54+00:00| seen| https://t.me/cibsecurity/38986...
CVE-2022-26991
CVE-2022-26991 concerns Arris routers SBR-AC1900P (1.0.7-B05), SBR-AC3200P (1.0.7-B05) and SBR-AC1200P (1.0.5-B05). A command-injection in the ntp function via the TimeZone parameter allows an attacker to execute arbitrary commands through a crafted request. Public sources consistently describe i...