VYPR

DG3450 Cable Gateway

by Arris

CVEs (2)

  • CVE-2023-27571Apr 14, 2023
    risk 0.00cvss epss 0.01

    An issue was discovered in DG3450 Cable Gateway AR01.02.056.18_041520_711.NCS.10. The troubleshooting_logs_download.php log file download functionality does not check the session cookie. Thus, an attacker can download all log files.

  • CVE-2023-27572Apr 14, 2023
    risk 0.00cvss epss 0.01

    An issue was discovered in CommScope Arris DG3450 Cable Gateway AR01.02.056.18_041520_711.NCS.10. A reflected XSS vulnerability was discovered in the https_redirect.php web page via the page parameter.