Lucene search
HistorySep 05, 2014 - 5:55 p.m.
CVE-2014-4863
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.2
Confidence
Low
EPSS
0.029
Percentile
91.0%
The Arris Touchstone DG950A cable modem with software 7.10.131 has an SNMP community of public, which allows remote attackers to obtain sensitive password, key, and SSID information via an SNMP request.
Affected configurations
Node
arristouchstone_dg950a_softwareMatch7.10.131
arristouchstone_dg950aMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| arris | touchstone_dg950a_software | 7.10.131 | cpe:2.3:a:arris:touchstone_dg950a_software:7.10.131:*:*:*:*:*:*:* |
| arris | touchstone_dg950a | - | cpe:2.3:h:arris:touchstone_dg950a:-:*:*:*:*:*:*:* |
Related
nessus
nessus
ARRIS Touchstone DG950A SNMP Information Disclosure (CVE-2014-4863)
2014-11-07 00:00:00
openvas
openvas
Arris DOCSIS Password Disclosure
2014-08-25 00:00:00
Report default community names of the SNMP Agent
2014-03-12 00:00:00
prion
prion
Design/Logic Flaw
2014-09-05 17:55:00
cvelist
cvelist
CVE-2014-4863
2014-09-05 17:00:00
cve
cve
CVE-2014-4863
2014-09-05 17:55:06
metasploit
metasploit
Arris DG950A Cable Modem Wifi Enumeration
2014-09-08 15:04:31
cert
cert
Arris Touchstone cable modem information leakage vulnerabiliity
2014-09-04 00:00:00
Netmaster cable modem information leakage vulnerability
2014-09-04 00:00:00
threatpost
threatpost
Some Cable Modems Found to Leak Sensitive Data Via SNMP
2014-09-04 11:43:19
packetstorm
packetstorm
Arris DG950A Cable Modem Wifi Enumeration
2024-08-31 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.2
Confidence
Low
EPSS
0.029
Percentile
91.0%
Related for NVD:CVE-2014-4863