Vulnerabilities > Arris
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2014-11-28 | CVE-2014-8425 | Information Exposure vulnerability in Arris Vap2500 Firmware 08.41 The management portal in ARRIS VAP2500 before FW08.41 allows remote attackers to obtain credentials by reading the configuration files. | 7.8 |
| 2014-11-28 | CVE-2014-8424 | Improper Authentication vulnerability in Arris Vap2500 Firmware 08.41 ARRIS VAP2500 before FW08.41 does not properly validate passwords, which allows remote attackers to bypass authentication. | 7.8 |
| 2014-11-28 | CVE-2014-8423 | Injection vulnerability in Arris Vap2500 Firmware 08.41 Unspecified vulnerability in the management portal in ARRIS VAP2500 before FW08.41 allows remote attackers to execute arbitrary commands via unknown vectors. | 10.0 |
| 2014-09-05 | CVE-2014-4863 | Information Exposure vulnerability in Arris Touchstone Dg950A and Touchstone Dg950A Software The Arris Touchstone DG950A cable modem with software 7.10.131 has an SNMP community of public, which allows remote attackers to obtain sensitive password, key, and SSID information via an SNMP request. | 5.0 |
| 2007-06-12 | CVE-2007-2796 | Denial Of Service vulnerability in Arris Cadant C3 CTMS IP Packet Arris Cadant C3 CMTS allows remote attackers to cause a denial of service (service termination) via a malformed IP packet with an invalid IP option. | 7.8 |