GCVE - cpe:2.3:h:commscope:dg3450:-:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:h:commscope:dg3450:-:*:*:*:*:*:*:*

part: h version: - update: *

Vendor	Commscope (`eb313045-4870-5e60-bc46-581a488779cc`)
Product	Dg3450 (`8c47d66c-8a2f-5230-b353-7797730473c1`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2023-27572`	not_vulnerable	2026-06-03 14:51:02.406517	Details available An issue was discovered in CommScope Arris DG3450 Cable Gateway AR01.02.056.18_041520_711.NCS.10. A reflected XSS vulnerability was discovered in the https_redirect.php web page via the page parameter. Published: 2023-04-14T00:00:00.000Z Updated: 2025-02-10T15:48:36.711Z Open on db.gcve.eu Reference links https://sec-consult.com/en/vulnerability-lab/advisories/index.html https://www.sec-consult.com/en/blog/ https://sec-consult.com/vulnerability-lab/advisory/multiple-vulnerabilities-in-arris-dg3450-cable-gateway/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-27571`	not_vulnerable	2026-06-03 14:51:02.405808	Details available An issue was discovered in DG3450 Cable Gateway AR01.02.056.18_041520_711.NCS.10. The troubleshooting_logs_download.php log file download functionality does not check the session cookie. Thus, an attacker can download all log files. Published: 2023-04-14T00:00:00.000Z Updated: 2025-02-13T16:45:28.527Z Open on db.gcve.eu Reference links https://sec-consult.com/en/vulnerability-lab/advisories/index.html https://www.sec-consult.com/en/blog/ https://sec-consult.com/vulnerability-lab/advisory/multiple-vulnerabilities-in-arris-dg3450-cable-gateway/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.