Lucene search
K

49 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:43 a.m.7 views

CVE-2022-26993

Arris routers SBR-AC1900P 1.0.7-B05, SBR-AC3200P 1.0.7-B05 and SBR-AC1200P 1.0.5-B05 were discovered to contain a command injection vulnerability in the pppoe function via the pppoeUserName, pppoePassword, and pppoeService parameters. This vulnerability allows attackers to execute arbitrary...

9.8CVSS8.6AI score0.02718EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:42 a.m.4 views

CVE-2022-26991

Arris routers SBR-AC1900P 1.0.7-B05, SBR-AC3200P 1.0.7-B05 and SBR-AC1200P 1.0.5-B05 were discovered to contain a command injection vulnerability in the ntp function via the TimeZone parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...

9.8CVSS8.6AI score0.02718EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:41 a.m.8 views

CVE-2022-26992

Arris routers SBR-AC1900P 1.0.7-B05, SBR-AC3200P 1.0.7-B05 and SBR-AC1200P 1.0.5-B05 were discovered to contain a command injection vulnerability in the ddns function via the DdnsUserName, DdnsHostName, and DdnsPassword parameters. This vulnerability allows attackers to execute arbitrary commands...

9.8CVSS8.6AI score0.02937EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-31534

Malicious code in bioql PyPI...

9.8CVSS9.5AI score0.02985EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-31532

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.02937EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-31531

Malicious code in bioql PyPI...

9.8CVSS9.5AI score0.02718EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-31530

Malicious code in bioql PyPI...

9.8CVSS9.5AI score0.02901EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-31533

Malicious code in bioql PyPI...

9.8CVSS9.5AI score0.02718EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:35 p.m.11 views

CVE-2022-26990

Arris routers SBR-AC1900P 1.0.7-B05, SBR-AC3200P 1.0.7-B05 and SBR-AC1200P 1.0.5-B05 were discovered to contain a command injection vulnerability in the firewall-local log function via the EmailAddress, SmtpServerName, SmtpUsername, and SmtpPassword parameters. This vulnerability allows attackers...

9.8CVSS8.6AI score0.02901EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:35 p.m.7 views

CVE-2022-26994

Arris routers SBR-AC1900P 1.0.7-B05, SBR-AC3200P 1.0.7-B05 and SBR-AC1200P 1.0.5-B05 were discovered to contain a command injection vulnerability in the pptp function via the pptpUserName and pptpPassword parameters. This vulnerability allows attackers to execute arbitrary commands via a crafted...

9.8CVSS8.6AI score0.02985EPSS
Exploits1References1
GithubExploit
GithubExploit
added 2024/08/09 7:30 p.m.254 views

Exploit for Command Injection in Commscope Arris_Tg2482A_Firmware

EN This project provides a Python script to exploit a remote c...

8.8CVSS9.2AI score0.45313EPSS
Exploits6
BDU FSTEC
BDU FSTEC
added 2023/03/07 12:0 a.m.5 views

The vulnerability of the microprogrammed software of Arris routers such as TG2482A, TG2492, and SBG10 allows a hacker to execute arbitrary code.

The vulnerability of the microprogrammed software of Arris routers such as TG2482A, TG2492, and SBG10 is related to errors in processing input data. Exploiting this vulnerability can allow a remote attacker to execute arbitrary code by sending a specially crafted request...

9CVSS8.1AI score0.45313EPSS
Exploits6References4Affected Software3
Check Point Advisories
Check Point Advisories
added 2022/11/10 12:0 a.m.4 views

Arris Routers Command Injection (CVE-2022-26990; CVE-2022-26991; CVE-2022-26992; CVE-2022-26993; CVE-2022-26994; CVE-2022-26995; CVE-2022-26996; CVE-2022-26997; CVE-2022-26998; CVE-2022-26999; CVE-2022-27000; CVE-2022-27001; CVE-2022-27002)

A command injection vulnerability exists in Arris Routers. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

10CVSS7.9AI score0.0612EPSS
Exploits13
Malwarebytes
Malwarebytes
added 2022/08/01 5:31 p.m.128 views

Millions of Arris routers are vulnerable to path traversal attacks

Security researcher Derek Abdine has published an advisory about vulnerabilities that exist in the MIT-licensed muhttpd web server. This web server is present in Arris firmware which can be found in several router models. muhttpd web server muhttpd mu HTTP deamon is a simple but complete web serv...

7.5CVSS9.7AI score0.11372EPSS
Exploits3
Malwarebytes
Malwarebytes
added 2022/08/01 5:0 p.m.40 views

Millions of Arris routers are vulnerable to path traversal attacks

Security researcher Derek Abdine has published an advisory about vulnerabilities that exist in the MIT-licensed muhttpd web server. This web server is present in Arris firmware which can be found in several router models. muhttpd web server muhttpd mu HTTP deamon is a simple but complete web serv...

7.5CVSS9.7AI score0.11372EPSS
Exploits3
OSV
OSV
added 2022/03/15 10:15 p.m.3 views

CVE-2022-26993

Arris routers SBR-AC1900P 1.0.7-B05, SBR-AC3200P 1.0.7-B05 and SBR-AC1200P 1.0.5-B05 were discovered to contain a command injection vulnerability in the pppoe function via the pppoeUserName, pppoePassword, and pppoeService parameters. This vulnerability allows attackers to execute arbitrary...

9.8CVSS7.5AI score0.02718EPSS
Exploits1References1
OSV
OSV
added 2022/03/15 10:15 p.m.3 views

CVE-2022-26994

Arris routers SBR-AC1900P 1.0.7-B05, SBR-AC3200P 1.0.7-B05 and SBR-AC1200P 1.0.5-B05 were discovered to contain a command injection vulnerability in the pptp function via the pptpUserName and pptpPassword parameters. This vulnerability allows attackers to execute arbitrary commands via a crafted...

9.8CVSS6AI score0.02985EPSS
Exploits1References1
OSV
OSV
added 2022/03/15 10:15 p.m.3 views

CVE-2022-26992

Arris routers SBR-AC1900P 1.0.7-B05, SBR-AC3200P 1.0.7-B05 and SBR-AC1200P 1.0.5-B05 were discovered to contain a command injection vulnerability in the ddns function via the DdnsUserName, DdnsHostName, and DdnsPassword parameters. This vulnerability allows attackers to execute arbitrary commands...

9.8CVSS7.5AI score0.02937EPSS
Exploits1References1
NVD
NVD
added 2022/03/15 10:15 p.m.10 views

CVE-2022-26991

Arris routers SBR-AC1900P 1.0.7-B05, SBR-AC3200P 1.0.7-B05 and SBR-AC1200P 1.0.5-B05 were discovered to contain a command injection vulnerability in the ntp function via the TimeZone parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...

9.8CVSS0.02718EPSS
Exploits1References1
OSV
OSV
added 2022/03/15 10:15 p.m.3 views

CVE-2022-26990

Arris routers SBR-AC1900P 1.0.7-B05, SBR-AC3200P 1.0.7-B05 and SBR-AC1200P 1.0.5-B05 were discovered to contain a command injection vulnerability in the firewall-local log function via the EmailAddress, SmtpServerName, SmtpUsername, and SmtpPassword parameters. This vulnerability allows attackers...

9.8CVSS7.5AI score0.02901EPSS
Exploits1References1
Rows per page
Query Builder