High severity8.0NVD Advisory· Published Dec 17, 2016· Updated May 6, 2026

CVE-2016-7454

Description

CSRF vulnerability on Technicolor TC dpc3941T (formerly Cisco dpc3941T) devices with firmware dpc3941-P20-18-v303r20421733-160413a-CMCST allows an attacker to change the Wi-Fi password, open the remote management interface, or reset the router.

Affected products

Technicolor/Xfinity Gateway Router Dpc3941t Firmware
cpe:2.3:o:technicolor:xfinity_gateway_router_dpc3941t_firmware:dpc3941-p20-18-v303r20421733-160413a-cmcst:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

packetstormsecurity.com/files/140121/XFINITY-Gateway-Technicolor-DPC3941T-Cross-Site-Request-Forgery.htmlnvdExploitThird Party AdvisoryVDB Entry
www.securityfocus.com/bid/94881nvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.520
epss	0.001
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000