CVE-2017-14117
Severity Score
5.9
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The AT&T U-verse 9.2.2h0d83 firmware for the Arris NVG589 and NVG599 devices, when IP Passthrough mode is not used, configures an unauthenticated proxy service on WAN TCP port 49152, which allows remote attackers to establish arbitrary TCP connections to intranet hosts by sending \x2a\xce\x01 followed by other predictable values.
El firmware ATT U-verse 9.2.2h0d83 para los dispositivos Arris NVG589 and NVG599, cuando el modo IP Passthrough no está en uso, configura un servicio de proxy sin autenticar en el puerto WAN TCP 49152, lo que permite que atacantes remotos establezcan conexiones TCP arbitrarias en hosts de intranet mediante el envío de \x2a\xce\x01 seguido por otros valores predecibles.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2017-09-03 CVE Reserved
- 2017-09-03 CVE Published
- 2023-08-14 EPSS Updated
- 2024-08-05 CVE Updated
- 2024-08-05 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-287: Improper Authentication
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/100585 | Third Party Advisory | |
| https://threatpost.com/bugs-in-arris-modems-distributed-by-att-vulnerable-to-trivial-attacks/127753 | Third Party Advisory |
| URL | Date | SRC |
|---|---|---|
| https://www.nomotion.net/blog/sharknatto | 2024-08-05 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Att Search vendor "Att" | U-verse Firmware Search vendor "Att" for product "U-verse Firmware" | 9.2.2h0d83 Search vendor "Att" for product "U-verse Firmware" and version "9.2.2h0d83" | - |
Affected
| in | Commscope Search vendor "Commscope" | Arris Nvg589 Search vendor "Commscope" for product "Arris Nvg589" | - | - |
Safe
|
| Att Search vendor "Att" | U-verse Firmware Search vendor "Att" for product "U-verse Firmware" | 9.2.2h0d83 Search vendor "Att" for product "U-verse Firmware" and version "9.2.2h0d83" | - |
Affected
| in | Commscope Search vendor "Commscope" | Arris Nvg599 Search vendor "Commscope" for product "Arris Nvg599" | - | - |
Safe
|