The web server on Cisco DPC3010, DPC3212, DPC3825, DPC3925, DPQ3925, EPC3010, EPC3212, EPC3825, and EPC3925 Wireless Residential Gateway products allows remote attackers to execute arbitrary code via a crafted HTTP request, aka Bug ID CSCup40808.
Max CVSS
10.0
EPSS Score
1.01%
Published
2014-07-18
Updated
2017-01-12
Cross-site request forgery (CSRF) vulnerability in goform/Quick_setup on Cisco EPC3925 devices allows remote attackers to hijack the authentication of administrators for requests that change a password via the Password and PasswordReEnter parameters, aka Bug ID CSCuh37496.
Max CVSS
6.8
EPSS Score
0.48%
Published
2013-12-19
Updated
2016-09-15
2 vulnerabilities found