Vulnerabilities > Arris > High

DATE CVE VULNERABILITY TITLE RISK
2023-12-27 CVE-2023-40038 Improper Authentication vulnerability in Arris Dg1670A Firmware and Dg860A Firmware
Arris DG860A and DG1670A devices have predictable default WPA2 PSKs that could lead to unauthorized remote access.
low complexity
arris CWE-287
8.8
2014-11-28 CVE-2014-8425 Information Exposure vulnerability in Arris Vap2500 Firmware 08.41
The management portal in ARRIS VAP2500 before FW08.41 allows remote attackers to obtain credentials by reading the configuration files.
network
low complexity
arris CWE-200
7.8
2014-11-28 CVE-2014-8424 Improper Authentication vulnerability in Arris Vap2500 Firmware 08.41
ARRIS VAP2500 before FW08.41 does not properly validate passwords, which allows remote attackers to bypass authentication.
network
low complexity
arris CWE-287
7.8
2007-06-12 CVE-2007-2796 Denial Of Service vulnerability in Arris Cadant C3 CTMS IP Packet
Arris Cadant C3 CMTS allows remote attackers to cause a denial of service (service termination) via a malformed IP packet with an invalid IP option.
network
low complexity
arris
7.8