CVE-2014-3306

Published Jul 18, 2014

Last updated 3 months ago

CVSS info 10.0

Overview

Description: The web server on Cisco DPC3010, DPC3212, DPC3825, DPC3925, DPQ3925, EPC3010, EPC3212, EPC3825, and EPC3925 Wireless Residential Gateway products allows remote attackers to execute arbitrary code via a crafted HTTP request, aka Bug ID CSCup40808.
Source: ykramarz@cisco.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-20

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:dpc3010:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E45A410D-E925-4660-BF51-62A16E799B62"
          },
          {
            "criteria": "cpe:2.3:h:cisco:dpc3212:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "27F50A41-EA8A-46D8-BDD9-6ED89EF5184B"
          },
          {
            "criteria": "cpe:2.3:h:cisco:dpc3825:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "97029F20-9265-46A4-BFAE-E2E03B2B0A8B"
          },
          {
            "criteria": "cpe:2.3:h:cisco:dpc3925:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C38E93F5-1CF8-4269-99A8-50D2E4D80690"
          },
          {
            "criteria": "cpe:2.3:h:cisco:dpq3925:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A399ADC1-8E85-4596-A675-7A8C25F1888F"
          },
          {
            "criteria": "cpe:2.3:h:cisco:epc3010:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CA0A17D8-1193-42D3-A00F-8B762B171C48"
          },
          {
            "criteria": "cpe:2.3:h:cisco:epc3212:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DCED8A34-F6A1-4786-A5BF-662F8842FB11"
          },
          {
            "criteria": "cpe:2.3:h:cisco:epc3825:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "26E7AC16-EE5D-4D4D-84C6-0E00959FF4FF"
          },
          {
            "criteria": "cpe:2.3:h:cisco:epc3925:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9AF384F3-5435-4094-8BAD-2E5D1918F4BA"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References