GCVE - cpe:2.3:h:arris:sbr-ac1900p:-:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:h:arris:sbr-ac1900p:-:*:*:*:*:*:*:*

part: h version: - update: *

Vendor	Arris (`290db500-1f7c-5464-99cb-40c6b5ca6750`)
Product	Sbr Ac1900P (`050e5cd3-babc-5b04-af7d-33dae8dfe5ca`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2022-26994`	not_vulnerable	2026-06-03 14:46:45.468727	Details available Arris routers SBR-AC1900P 1.0.7-B05, SBR-AC3200P 1.0.7-B05 and SBR-AC1200P 1.0.5-B05 were discovered to contain a command injection vulnerability in the pptp function via the pptpUserName and pptpPassword parameters. This vulnerability allows attackers to execute arbitrary commands via a crafted request. Published: 2022-03-15T21:56:27.000Z Updated: 2024-08-03T05:18:39.069Z Open on db.gcve.eu Reference links https://github.com/wudipjq/my_vuln/blob/main/ARRIS/vuln_5/5.md	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-26993`	not_vulnerable	2026-06-03 14:46:45.468335	Details available Arris routers SBR-AC1900P 1.0.7-B05, SBR-AC3200P 1.0.7-B05 and SBR-AC1200P 1.0.5-B05 were discovered to contain a command injection vulnerability in the pppoe function via the pppoeUserName, pppoePassword, and pppoe_Service parameters. This vulnerability allows attackers to execute arbitrary commands via a crafted request. Published: 2022-03-15T21:56:27.000Z Updated: 2024-08-03T05:18:39.149Z Open on db.gcve.eu Reference links https://github.com/wudipjq/my_vuln/blob/main/ARRIS/vuln_4/4.md	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-26992`	not_vulnerable	2026-06-03 14:46:45.467933	Details available Arris routers SBR-AC1900P 1.0.7-B05, SBR-AC3200P 1.0.7-B05 and SBR-AC1200P 1.0.5-B05 were discovered to contain a command injection vulnerability in the ddns function via the DdnsUserName, DdnsHostName, and DdnsPassword parameters. This vulnerability allows attackers to execute arbitrary commands via a crafted request. Published: 2022-03-15T21:56:26.000Z Updated: 2024-08-03T05:18:39.291Z Open on db.gcve.eu Reference links https://github.com/wudipjq/my_vuln/blob/main/ARRIS/vuln_3/3.md	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-26991`	not_vulnerable	2026-06-03 14:46:45.467498	Details available Arris routers SBR-AC1900P 1.0.7-B05, SBR-AC3200P 1.0.7-B05 and SBR-AC1200P 1.0.5-B05 were discovered to contain a command injection vulnerability in the ntp function via the TimeZone parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request. Published: 2022-03-15T21:56:25.000Z Updated: 2024-08-03T05:18:39.262Z Open on db.gcve.eu Reference links https://github.com/wudipjq/my_vuln/blob/main/ARRIS/vuln_6/6.md	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-26990`	not_vulnerable	2026-06-03 14:46:45.464793	Details available Arris routers SBR-AC1900P 1.0.7-B05, SBR-AC3200P 1.0.7-B05 and SBR-AC1200P 1.0.5-B05 were discovered to contain a command injection vulnerability in the firewall-local log function via the EmailAddress, SmtpServerName, SmtpUsername, and SmtpPassword parameters. This vulnerability allows attackers to execute arbitrary commands via a crafted request. Published: 2022-03-15T21:56:25.000Z Updated: 2024-08-03T05:18:39.207Z Open on db.gcve.eu Reference links https://github.com/wudipjq/my_vuln/blob/main/ARRIS/vuln_2/2.md	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.