VYPR

DPC3939

by Cisco Systems, Inc.

CVEs (11)

  • CVE-2017-9483CriJul 31, 2017
    Cisco Systems, Inc.
    Dpc3939 Firmware
    risk 0.64cvss 9.8epss 0.01

    The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) devices allows Network Processor (NP) Linux users to obtain root access to the Application Processor (AP) Linux system via shell metacharacters in commands.

  • CVE-2017-9482CriJul 31, 2017
    Cisco Systems, Inc.
    Dpc3939 Firmware
    risk 0.64cvss 9.8epss 0.02

    The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) devices allows remote attackers to obtain root access to the Network Processor (NP) Linux system by enabling a TELNET daemon (through CVE-2017-9479 exploitation) and then…

  • CVE-2017-9479CriJul 31, 2017
    Cisco Systems, Inc.
    Dpc3939 Firmware
    risk 0.64cvss 9.8epss 0.02

    The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) devices allows remote attackers to execute arbitrary commands as root by leveraging local network access and connecting to the syseventd server, as demonstrated by copying…

  • CVE-2017-9488HigJul 31, 2017
    Cisco Systems, Inc.
    Dpc3939 Firmware
    risk 0.57cvss 8.8epss 0.00

    The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) and DPC3941T (firmware version DPC3941_2.5s3_PROD_sey) devices allows remote attackers to access the web UI by establishing a session to the wan0 WAN IPv6 address and then…

  • CVE-2017-9492HigJul 31, 2017
    Cisco Systems, Inc.
    Dpc3939 Firmware
    risk 0.49cvss 7.5epss 0.00

    The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a-CMCST); Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST); Cisco DPC3939B (firmware version dpc3939b-v303r204217-150321a-CMCST); Cisco DPC3941T (firmware…

  • CVE-2017-9484HigJul 31, 2017
    Cisco Systems, Inc.
    Dpc3939 Firmware
    risk 0.49cvss 7.5epss 0.00

    The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a-CMCST) and DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) devices allows remote attackers to discover a CM MAC address by sniffing Wi-Fi traffic and performing…

  • CVE-2017-9478HigJul 31, 2017
    Cisco Systems, Inc.
    Dpc3939 Firmware
    risk 0.49cvss 7.5epss 0.00

    The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a-CMCST) and DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) devices sets the CM MAC address to a value with a two-byte offset from the MTA/VoIP MAC address, which…

  • CVE-2017-9476MedJul 31, 2017
    Cisco Systems, Inc.
    Dpc3939 Firmware
    risk 0.44cvss 6.5epss 0.16

    The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a-CMCST); Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST); and Arris TG1682G (eMTA&DOCSIS version 10.0.132.SIP.PC20.CT, software version…

  • CVE-2017-9477MedJul 31, 2017
    Cisco Systems, Inc.
    Dpc3939 Firmware
    risk 0.42cvss 6.5epss 0.00

    The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a-CMCST) and DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) devices allows remote attackers to discover the CM MAC address by connecting to the device's xfinitywifi…

  • CVE-2017-9487MedJul 31, 2017
    Cisco Systems, Inc.
    Dpc3939 Firmware
    risk 0.38cvss 5.9epss 0.00

    The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) and DPC3941T (firmware version DPC3941_2.5s3_PROD_sey) devices allows remote attackers to discover a WAN IPv6 IP address by leveraging knowledge of the CM MAC address.

  • CVE-2017-9480MedJul 31, 2017
    Cisco Systems, Inc.
    Dpc3939 Firmware
    risk 0.36cvss 5.5epss 0.00

    The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) devices allows local users (e.g., users who have command access as a consequence of CVE-2017-9479 exploitation) to read arbitrary files via UPnP access to /var/IGD/.