Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

14 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2017-5627

Malware in sbrugna...

9.3CVSS8.1AI score0.04024EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2017-2438

Malware in sbrugna...

8.1CVSS8.2AI score0.00494EPSS
Exploits1References4
OpenVAS
OpenVASadded 2022/08/12 12:0 a.m.10 views

ARRIS Routers Information Disclosure Vulnerability (Jun 2022) - Active Check

Multiple ARRIS routers are prone to an information disclosure vulnerability in the underlying muhttpd web server. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7.5CVSS7.5AI score0.93819EPSS
Exploits2References1
CNVD
CNVDadded 2017/09/06 12:0 a.m.1 views

Arris NVG589 and NVG599 AT&T U-verse Command Injection Vulnerabilities

The Arris NVG589 and NVG599 are both router products from the Arris Group of Companies in the U.S. The AT&T U-verse is the firmware used in... A security vulnerability exists in the AT&T U-verse version 9.2.2h0d83 in the Arris NVG589 and NVG599. A remote attacker can exploit the vulnerability by...

9.3CVSS8.5AI score0.04024EPSS
Exploits1References1
CNVD
CNVDadded 2017/09/06 12:0 a.m.1 views

Arris NVG589 and NVG599 AT&T U-verse Authentication Vulnerabilities

The Arris NVG589 and NVG599 are both router products from the Arris Group of Companies in the U.S. The AT&T U-verse is the firmware used in... A security vulnerability exists in the AT&T U-verse version 9.2.2h0d83 in the Arris NVG589 and NVG599. A remote attacker could exploit this vulnerability ...

5.9CVSS6.3AI score0.31907EPSS
Exploits1References1
CNVD
CNVDadded 2017/09/06 12:0 a.m.2 views

Arris NVG589 and NVG599 AT&T U-verse Information Disclosure Vulnerabilities

The Arris NVG589 and NVG599 are both router products from the Arris Group of Companies in the U.S. The AT&T U-verse is the firmware used in... A security vulnerability exists in the AT&T U-verse version 9.2.2h0d83 in the Arris NVG589 and NVG599. A remote attacker could exploit the vulnerability t...

8.1CVSS8AI score0.00494EPSS
Exploits1References1
NVD
NVDadded 2017/09/03 7:29 p.m.12 views

CVE-2017-14117

The AT&T U-verse 9.2.2h0d83 firmware for the Arris NVG589 and NVG599 devices, when IP Passthrough mode is not used, configures an unauthenticated proxy service on WAN TCP port 49152, which allows remote attackers to establish arbitrary TCP connections to intranet hosts by sending \x2a\xce\x01...

5.9CVSS6AI score0.31907EPSS
Exploits1References3
Prion
Prionadded 2017/09/03 7:29 p.m.13 views

Code injection

The AT&T U-verse 9.2.2h0d83 firmware for the Arris NVG589 and NVG599 devices, when IP Passthrough mode is not used, configures an unauthenticated proxy service on WAN TCP port 49152, which allows remote attackers to establish arbitrary TCP connections to intranet hosts by sending \x2a\xce\x01...

4.3CVSS6AI score0.31907EPSS
Exploits1References3Affected Software1
Prion
Prionadded 2017/09/03 7:29 p.m.15 views

Design/Logic Flaw

The AT&T U-verse 9.2.2h0d83 firmware for the Arris NVG589, NVG599, and unspecified other devices, when IP Passthrough mode is not used, configures an sbdc.ha WAN TCP service on port 61001 with the bdctest account and the bdctest password, which allows remote attackers to obtain sensitive...

4.3CVSS7.8AI score0.00494EPSS
Exploits1References3Affected Software1
CVE
CVEadded 2017/09/03 7:0 p.m.63 views

CVE-2017-14115

The CVE-2017-14115 entry concerns AT&T U-verse firmware 9.2.2h0d83 on Arris NVG589/NVG599. The flaw arises when IP Passthrough is not used, configuring ssh-permanent-enable WAN SSH logins for the remotessh account with password 5SaP9I26. An attacker establishing an SSH session can trigger a Termi...

9.3CVSS8.1AI score0.04024EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2017/09/03 7:0 p.m.15 views

CVE-2017-14117

The AT&T U-verse 9.2.2h0d83 firmware for the Arris NVG589 and NVG599 devices, when IP Passthrough mode is not used, configures an unauthenticated proxy service on WAN TCP port 49152, which allows remote attackers to establish arbitrary TCP connections to intranet hosts by sending \x2a\xce\x01...

6.7AI score0.31907EPSS
Exploits1References3
Cvelist
Cvelistadded 2017/09/03 7:0 p.m.16 views

CVE-2017-10793

The AT&T U-verse 9.2.2h0d83 firmware for the Arris NVG589, NVG599, and unspecified other devices, when IP Passthrough mode is not used, configures an sbdc.ha WAN TCP service on port 61001 with the bdctest account and the bdctest password, which allows remote attackers to obtain sensitive...

7.9AI score0.00494EPSS
Exploits1References3
Cvelist
Cvelistadded 2017/09/03 7:0 p.m.15 views

CVE-2017-14115

The AT&T U-verse 9.2.2h0d83 firmware for the Arris NVG589 and NVG599 devices, when IP Passthrough mode is not used, configures ssh-permanent-enable WAN SSH logins to the remotessh account with the 5SaP9I26 password, which allows remote attackers to access a "Terminal shell v1.0" service, and...

8.2AI score0.04024EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2017/09/01 12:0 a.m.348 views

AT&T U-verse Arris Modems NVG589 / NVG599 / 5268AC Multiple Vulnerabilities (SharknATTo)

The remote Arris device's self report model is NVG589, NVG599 or 5268AC. It is, therefor, affected by multiple vulnerabilities, including a firewall bypass, multiple instances of hardcoded credentials, privilege escalation, and remote code execution. Note: Nessus has not checked the firmware...

9.3CVSS7AI score0.31907EPSS
Exploits4References5
Rows per page
Query Builder