Vulnerability Details CVE-2014-4863
The Arris Touchstone DG950A cable modem with software 7.10.131 has an SNMP community of public, which allows remote attackers to obtain sensitive password, key, and SSID information via an SNMP request.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.231
EPSS Ranking 95.7%
CVSS Severity
CVSS v2 Score 5.0
References
- http://www.kb.cert.org/vuls/id/855836
- https://community.rapid7.com/community/metasploit/blog/2014/08/21/more-snmp-information-leaks-cve-2014-4862-and-cve-2014-4863
- http://www.kb.cert.org/vuls/id/855836
- https://community.rapid7.com/community/metasploit/blog/2014/08/21/more-snmp-information-leaks-cve-2014-4862-and-cve-2014-4863
Products affected by CVE-2014-4863
-
cpe:2.3:a:arris:touchstone_dg950a_software:7.10.131
-
cpe:2.3:h:arris:touchstone_dg950a:-