Vulnerabilities > Commscope
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-15 | CVE-2023-27571 | Missing Authentication for Critical Function vulnerability in Commscope Dg3450 Firmware Ar01.02.056.18041520711.Ncs.10 An issue was discovered in DG3450 Cable Gateway AR01.02.056.18_041520_711.NCS.10. | 5.3 |
| 2023-04-15 | CVE-2023-27572 | Cross-site Scripting vulnerability in Commscope Dg3450 Firmware Ar01.02.056.18041520711.Ncs.10 An issue was discovered in CommScope Arris DG3450 Cable Gateway AR01.02.056.18_041520_711.NCS.10. | 6.1 |
| 2023-02-17 | CVE-2022-45701 | Unspecified vulnerability in Commscope products Arris TG2482A firmware through 9.1.103GEM9 allow Remote Code Execution (RCE) via the ping utility feature. | 8.8 |
| 2022-03-15 | CVE-2022-26995 | OS Command Injection vulnerability in Commscope Arris Tr3300 Firmware 1.0.13 Arris TR3300 v1.0.13 was discovered to contain a command injection vulnerability in the pptp (wan_pptp.html) function via the pptp_fix_ip, pptp_fix_mask, pptp_fix_gw, and wan_dns1_stat parameters. | 10.0 |
| 2022-03-15 | CVE-2022-26996 | OS Command Injection vulnerability in Commscope Arris Tr3300 Firmware 1.0.13 Arris TR3300 v1.0.13 was discovered to contain a command injection vulnerability in the pppoe function via the pppoe_username, pppoe_passwd, and pppoe_servicename parameters. | 10.0 |
| 2022-03-15 | CVE-2022-26997 | OS Command Injection vulnerability in Commscope Arris Tr3300 Firmware 1.0.13 Arris TR3300 v1.0.13 was discovered to contain a command injection vulnerability in the upnp function via the upnp_ttl parameter. | 10.0 |
| 2022-03-15 | CVE-2022-26998 | OS Command Injection vulnerability in Commscope Arris Tr3300 Firmware 1.0.13 Arris TR3300 v1.0.13 was discovered to contain a command injection vulnerability in the wps setting function via the wps_enrolee_pin parameter. | 10.0 |
| 2022-03-15 | CVE-2022-26999 | OS Command Injection vulnerability in Commscope Arris Tr3300 Firmware 1.0.13 Arris TR3300 v1.0.13 was discovered to contain a command injection vulnerability in the static ip settings function via the wan_ip_stat, wan_mask_stat, wan_gw_stat, and wan_dns1_stat parameters. | 10.0 |
| 2022-03-15 | CVE-2022-27000 | OS Command Injection vulnerability in Commscope Arris Tr3300 Firmware 1.0.13 Arris TR3300 v1.0.13 was discovered to contain a command injection vulnerability in the time and time zone function via the h_primary_ntp_server, h_backup_ntp_server, and h_time_zone parameters. | 10.0 |
| 2022-03-15 | CVE-2022-27001 | OS Command Injection vulnerability in Commscope Arris Tr3300 Firmware 1.0.13 Arris TR3300 v1.0.13 were discovered to contain a command injection vulnerability in the dhcp function via the hostname parameter. | 10.0 |