Lucene search
K

4 matches found

CNVD
CNVD
added 2017/09/06 12:0 a.m.4 views

Arris NVG599 AT&T U-verse ROOT Acquisition Vulnerability

The Arris NVG599 is a router product from the Arris Group of Companies in the U.S. The AT&T U-verse is the firmware used in the. A security vulnerability exists in the AT&T U-verse version 9.2.2h0d83 in the Arris NVG599. A remote attacker can exploit this vulnerability to gain root privileges by...

9.3CVSS8.3AI score0.03342EPSS
Exploits1References1
OSV
OSV
added 2017/09/03 7:29 p.m.5 views

CVE-2017-14116

The AT&T U-verse 9.2.2h0d83 firmware for the Arris NVG599 device, when IP Passthrough mode is not used, configures WAN access to a caserver https service with the tech account and an empty password, which allows remote attackers to obtain root privileges by establishing a session on port 49955 an...

8.1CVSS5.8AI score0.03342EPSS
Exploits1References3
Prion
Prion
added 2017/09/03 7:29 p.m.17 views

Code injection

The AT&T U-verse 9.2.2h0d83 firmware for the Arris NVG599 device, when IP Passthrough mode is not used, configures WAN access to a caserver https service with the tech account and an empty password, which allows remote attackers to obtain root privileges by establishing a session on port 49955 an...

9.3CVSS8AI score0.03342EPSS
Exploits1References3Affected Software1
CNVD
CNVD
added 2017/09/01 12:0 a.m.3 views

Arris Modems Hardcoded Backdoor Vulnerability (CNVD-2017-24359)

Arris Modems are modems produced by telecom equipment manufacturer Arris, customized for AT&T home users for on-net access. A hard-coded backdoor vulnerability exists in Arris Modems, which have a built-in web server that allows an attacker to access the back-end administration panel through port...

6.9AI score
Exploits0References1
Rows per page
Query Builder