Arris Router Firmware 9.1.103 Remote Code Execution

c Exploit Title: Arris Router Firmware 9.1.103 - Remote Code Execution RCE Authenticated Date: 17/11/2022 Exploit Author: Yerodin Richards Vendor Homepage: https://www.commscope.com/ Version: 9.1.103 Tested on: TG2482A, TG2492, SBG10 CVE : CVE-2022-45701 import requests import base64 routerhost =...

Arris Router Firmware 9.1.103 Remote Code Execution Exploit

Arris Router Firmware version 9.1.103 authenticated remote code execution exploit that has been tested against the TG2482A, TG2492, and SBG10 models. Exploit Title: Arris Router Firmware 9.1.103 - Remote Code Execution RCE Authenticated Exploit Author: Yerodin Richards Vendor Homepage:...

CommScope Ruckus R500 安全漏洞

The CommScope Ruckus R500 is a wireless access point from CommScope, Inc. A security vulnerability exists in multiple RUCKUS Networks products that originates from the forced injection of unauthorized system image signatures using official system image signatures...

CommScope Ruckus R500 安全漏洞

The CommScope Ruckus R500 is a wireless access point from CommScope, Inc. A security vulnerability exists in multiple RUCKUS Networks products that stems from an md5 checksum failure error that bypasses the firmware system image error...

CommScope Ruckus R500 安全漏洞

The CommScope Ruckus R500 is a wireless access point from CommScope, Inc. A security vulnerability exists in multiple RUCKUS Networks products that originates from erasing a backup secondary official system image and writing to a secondary backup unauthorized system image...

CommScope Ruckus R500 安全漏洞

The CommScope Ruckus R500 is a wireless access point from CommScope, Inc. A security vulnerability exists in multiple RUCKUS Networks products that originates from a full switch to an unauthorized system image to boot as the primary authentication system image...

CVE-2021-41552

CommScope SURFboard SBG6950AC2 9.1.103AA23 devices allow Command Injection...

Command injection

CommScope SURFboard SBG6950AC2 9.1.103AA23 devices allow Command Injection...

CVE-2021-41552

CommScope SURFboard SBG6950AC2 9.1.103AA23 devices allow Command Injection...

CVE-2021-41552

CVE-2021-41552 affects CommScope SURFboard SBG6950AC2 devices with firmware 9.1.103AA23, enabling a Command Injection vulnerability. The available connected documents confirm the vulnerable component is the device (SBG6950AC2) and that the issue enables command execution. Exploitation and remedia...

CommScope Urfboard Sbg6950Ac2 命令注入漏洞

The CommScope Urfboard Sbg6950Ac2 is a Docsis 3.0 modem, Wave 2 Ac1900 Dual Concurrent Wifi Access Point, and 4-port Gigabit Ethernet Router from CommScope USA. A command injection vulnerability exists in the CommScope URFboard SBG6950AC2, which originates from the CommScope URFboard SBG6950AC2...

CommScope Arris Surfboard Sb8200 访问控制错误漏洞

The CommScope Arris Surfboard Sb8200 is a Docsis 3.1 modem from CommScope USA. An access control error vulnerability exists in the CommScope Arris SurfBoard SB8200 that stems from the product's password change feature not having effective security measures in place. The vulnerability can be...

CVE-2021-33220

An issue was discovered in CommScope Ruckus IoT Controller 1.7.1.0 and earlier. Hard-coded API Keys exist...

CVE-2021-33218

An issue was discovered in CommScope Ruckus IoT Controller 1.7.1.0 and earlier. There are Hard-coded System Passwords that provide shell access...

CVE-2021-33220

An issue was discovered in CommScope Ruckus IoT Controller 1.7.1.0 and earlier. Hard-coded API Keys exist...

CVE-2021-33219

An issue was discovered in CommScope Ruckus IoT Controller 1.7.1.0 and earlier. There are Hard-coded Web Application Administrator Passwords for the admin and nplus1user accounts...

CVE-2021-33217

An issue was discovered in CommScope Ruckus IoT Controller 1.7.1.0 and earlier. The Web Application allows Arbitrary Read/Write actions by authenticated users. The API allows an HTTP POST of arbitrary content into any file on the filesystem as root...

CVE-2021-33221

An issue was discovered in CommScope Ruckus IoT Controller 1.7.1.0 and earlier. There are Unauthenticated API Endpoints...

CVE-2021-33219

An issue was discovered in CommScope Ruckus IoT Controller 1.7.1.0 and earlier. There are Hard-coded Web Application Administrator Passwords for the admin and nplus1user accounts...

CVE-2021-33216

An issue was discovered in CommScope Ruckus IoT Controller 1.7.1.0 and earlier. An Undocumented Backdoor exists, allowing shell access via a developer account...