Vulnerabilities > CVE-2017-9481 - Unspecified vulnerability in Cisco Dpc3939 Firmware Dpc3939P2018V303R20421746170221Acmcst

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

low complexity

cisco

NVD

Published: 2017-07-31

Updated: 2019-10-03

Summary

The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) devices allows remote attackers to obtain unintended access to the Network Processor (NP) 169.254/16 IP network by adding a routing-table entry that specifies the LAN IP address as the router for that network.

Vulnerable Configurations

Part	Description	Count
OS	Cisco Cisco Dpc3939 Firmware Dpc3939-P20-18-V303R20421746-170221A-Cmcst	1
Hardware	Cisco Cisco Dpc3939 -	1

References

https://github.com/BastilleResearch/CableTap/blob/master/doc/advisories/bastille-24.atom-ip-routing.txt