Na Model 862 Gw Mono Firmware
Approved changes feed: RSS · Atom
cpe:2.3:o:arris:na_model_862_gw_mono_firmware:ts0703128_100611:*:*:*:*:*:*:*
part: o version: ts0703128_100611 update: *
| Vendor | Arris (290db500-1f7c-5464-99cb-40c6b5ca6750) |
|---|---|
| Product | Na Model 862 Gw Mono Firmware (309384b7-34e8-5e7d-9a54-a11fcd8f26aa) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2015-7291 |
vulnerable | 2026-06-03 14:35:08.325653 |
Details available
Cross-site request forgery (CSRF) vulnerability in adv_pwd_cgi in the web management interface on Arris DG860A, TG862A, and TG862G devices with firmware TS0703128_100611 through TS0705125D_031115 allows remote attackers to hijack the authentication of arbitrary users.
Published: 2015-11-21T11:00:00.000Z
Updated: 2024-08-06T07:43:46.163Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2015-7290 |
vulnerable | 2026-06-03 14:35:08.325195 |
Details available
Cross-site scripting (XSS) vulnerability in adv_pwd_cgi in the web management interface on Arris DG860A, TG862A, and TG862G devices with firmware TS0703128_100611 through TS0705125D_031115 allows remote attackers to inject arbitrary web script or HTML via the pwd parameter.
Published: 2015-11-21T11:00:00.000Z
Updated: 2024-08-06T07:43:46.100Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2015-7289 |
vulnerable | 2026-06-03 14:35:08.319187 |
Details available
Arris DG860A, TG862A, and TG862G devices with firmware TS0703128_100611 through TS0705125D_031115 have a hardcoded administrator password derived from a serial number, which makes it easier for remote attackers to obtain access via the web management interface, SSH, TELNET, or SNMP.
Published: 2015-11-21T11:00:00.000Z
Updated: 2024-08-06T07:43:46.130Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2009-5149 |
vulnerable | 2026-06-03 14:30:01.442244 |
Details available
Arris DG860A, TG862A, and TG862G devices with firmware TS0703128_100611 through TS0705125D_031115 have predictable technician passwords, which makes it easier for remote attackers to obtain access via the web management interface, related to a "password of the day" issue.
Published: 2015-11-21T11:00:00.000Z
Updated: 2024-08-07T07:32:22.961Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.