Vulnerability Details CVE-2016-1327
Buffer overflow in the web server on Cisco DPC2203 and EPC2203 devices with firmware r1_customer_image allows remote attackers to execute arbitrary code via a crafted HTTP request, aka Bug ID CSCuv05935.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.036
EPSS Ranking 87.2%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
- http://www.securityfocus.com/bid/84279
- http://www.securitytracker.com/id/1035235
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160309-cmre
- http://www.securityfocus.com/bid/84279
- http://www.securitytracker.com/id/1035235
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160309-cmre
Products affected by CVE-2016-1327
-
cpe:2.3:h:cisco:dpc2203:-
-
cpe:2.3:h:cisco:epc2203:-
-
cpe:2.3:o:cisco:dpc2203_cable_modem_firmware:r1_customer_image_base
-
cpe:2.3:o:cisco:epc2203_cable_modem_firmware:r1_customer_image_base