Vulnerability-Lookup

CVE-2015-7289 (GCVE-0-2015-7289)

Vulnerability from cvelistv5 – Published: 2015-11-21 11:00 – Updated: 2024-08-06 07:43

Summary

Severity ?

No CVSS data available.

CWE

Assigner

certcc

References

URL

FKIE_CVE-2015-7289

Vulnerability from fkie_nvd - Published: 2015-11-21 11:59 - Updated: 2025-04-12 10:46

Severity ?

Summary

References

	URL	Tags
	cret@cert.org	http://www.kb.cert.org/vuls/id/419568	Third Party Advisory, US Government Resource
	af854a3a-2127-422b-91ae-364da2661108	http://www.kb.cert.org/vuls/id/419568	Third Party Advisory, US Government Resource

Impacted products

Vendor	Product	Version
arris	na_model_862_gw_mono_firmware	ts070593c_073013
arris	na_model_862_gw_mono_firmware	ts0703128_100611
arris	na_model_862_gw_mono_firmware	ts0703135_112211
arris	na_model_862_gw_mono_firmware	ts0705125_062314
arris	na_model_862_gw_mono_firmware	ts0705125d_031115
arris	dg860a	*
arris	tg862a	*
arris	tg862g	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:arris:na_model_862_gw_mono_firmware:ts070593c_073013:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE587573-08E6-414D-98DC-9187C365F583",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arris:na_model_862_gw_mono_firmware:ts0703128_100611:*:*:*:*:*:*:*",
              "matchCriteriaId": "B86E7209-225B-465F-8127-21267B78A0D8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arris:na_model_862_gw_mono_firmware:ts0703135_112211:*:*:*:*:*:*:*",
              "matchCriteriaId": "9B1FFC16-7E5C-46B3-88FA-3B572227AC25",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arris:na_model_862_gw_mono_firmware:ts0705125_062314:*:*:*:*:*:*:*",
              "matchCriteriaId": "0E630C0D-DAF6-4CFD-948E-E43CC7FA12D8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arris:na_model_862_gw_mono_firmware:ts0705125d_031115:*:*:*:*:*:*:*",
              "matchCriteriaId": "FF86A127-AC02-42B7-905F-46A3B7D618CC",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:arris:dg860a:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "9F752C6F-5269-4330-A1B4-F575EF4ACD70",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:arris:tg862a:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "214B7318-F67E-4B24-81C7-51863868BE8B",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:arris:tg862g:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "7C41240B-0116-4F89-93BB-553F9A30065F",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Arris DG860A, TG862A, and TG862G devices with firmware TS0703128_100611 through TS0705125D_031115 have a hardcoded administrator password derived from a serial number, which makes it easier for remote attackers to obtain access via the web management interface, SSH, TELNET, or SNMP."
    },
    {
      "lang": "es",
      "value": "Dispositivos Arris DG860A, TG862A y TG862G con firmware TS0703128_100611 hasta la versi\u00f3n TS0705125D_031115 tienen una contrase\u00f1a de administrador embebida derivada de un n\u00famero de serie, lo que facilita a atacantes remotos obtener acceso a trav\u00e9s de la interfaz de gesti\u00f3n web, SSH, TELNET o SNMP."
    }
  ],
  "id": "CVE-2015-7289",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 9.3,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2015-11-21T11:59:16.620",
  "references": [
    {
      "source": "cret@cert.org",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/419568"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/419568"
    }
  ],
  "sourceIdentifier": "cret@cert.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-255"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

VAR-201511-0053

Vulnerability from variot - Updated: 2025-04-13 23:18

Arris DG860A, TG862A, and TG862G devices with firmware TS0703128_100611 through TS0705125D_031115 have a hardcoded administrator password derived from a serial number, which makes it easier for remote attackers to obtain access via the web management interface, SSH, TELNET, or SNMP. Multiple models of ARRIS cable modems contain multiple, deterministically generated backdoor passwords, as well as multiple cross-site scripting (XSS) and cross-site request forgery (CSRF) vulnerabilities. Arris DG860A, TG862A and TG862G are modem products of the American Arris Group. A remote attacker can exploit the vulnerability to gain access through the web administration interface. A cross-site scripting vulnerability 2. A cross-site request-forgery vulnerability 3. Multiple security-bypass vulnerabilities An attacker can exploit these issues to bypass security restrictions and perform unauthorized actions, execute attacker-supplied HTML or JavaScript code in the context of the affected site or to steal cookie-based authentication credentials. This may aid in further attacks. The following products and versions are affected: Arris DG860A, TG862A, TG862G using firmware versions TS0703128_100611 to TS0705125D_031115

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201511-0053",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "na model 862 gw mono",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "arris",
        "version": "ts0703135_112211"
      },
      {
        "model": "na model 862 gw mono",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "arris",
        "version": "ts0705125d_031115"
      },
      {
        "model": "na model 862 gw mono",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "arris",
        "version": "ts070593c_073013"
      },
      {
        "model": "na model 862 gw mono",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "arris",
        "version": "ts0705125_062314"
      },
      {
        "model": "na model 862 gw mono",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "arris",
        "version": "ts0703128_100611"
      },
      {
        "model": null,
        "scope": null,
        "trust": 0.8,
        "vendor": "arris",
        "version": null
      },
      {
        "model": "dg860a",
        "scope": null,
        "trust": 0.8,
        "vendor": "arris group",
        "version": null
      },
      {
        "model": "na.model 862.gw.mono",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "arris group",
        "version": "ts0703128_100611 to  ts0705125d_031115"
      },
      {
        "model": "tg862a",
        "scope": null,
        "trust": 0.8,
        "vendor": "arris group",
        "version": null
      },
      {
        "model": "tg862g",
        "scope": null,
        "trust": 0.8,
        "vendor": "arris group",
        "version": null
      },
      {
        "model": "dg860a ts0703128 100611 to ts0705125d 031115",
        "scope": null,
        "trust": 0.6,
        "vendor": "arris",
        "version": null
      },
      {
        "model": "tg862a ts0703128 100611 to ts0705125d 031115",
        "scope": null,
        "trust": 0.6,
        "vendor": "arris",
        "version": null
      },
      {
        "model": "tg862g ts0703128 100611 to ts0705125d 031115",
        "scope": null,
        "trust": 0.6,
        "vendor": "arris",
        "version": null
      },
      {
        "model": "tg862g ts070593c 073013 na.",
        "scope": null,
        "trust": 0.3,
        "vendor": "arris",
        "version": null
      },
      {
        "model": "tg862g ts0705125d 031115 na",
        "scope": null,
        "trust": 0.3,
        "vendor": "arris",
        "version": null
      },
      {
        "model": "tg862g ts0705125 062314 na.",
        "scope": null,
        "trust": 0.3,
        "vendor": "arris",
        "version": null
      },
      {
        "model": "tg862g ts0703135 112211 na.",
        "scope": null,
        "trust": 0.3,
        "vendor": "arris",
        "version": null
      },
      {
        "model": "tg862g ts0703128 100611 na.",
        "scope": null,
        "trust": 0.3,
        "vendor": "arris",
        "version": null
      },
      {
        "model": "tg862a ts070593c 073013 na.",
        "scope": null,
        "trust": 0.3,
        "vendor": "arris",
        "version": null
      },
      {
        "model": "tg862a ts0705125d 031115 na",
        "scope": null,
        "trust": 0.3,
        "vendor": "arris",
        "version": null
      },
      {
        "model": "tg862a ts0705125 062314 na.",
        "scope": null,
        "trust": 0.3,
        "vendor": "arris",
        "version": null
      },
      {
        "model": "tg862a ts0703135 112211 na.",
        "scope": null,
        "trust": 0.3,
        "vendor": "arris",
        "version": null
      },
      {
        "model": "tg862a ts0703128 100611 na.",
        "scope": null,
        "trust": 0.3,
        "vendor": "arris",
        "version": null
      },
      {
        "model": "dg860a ts070593c 073013 na.",
        "scope": null,
        "trust": 0.3,
        "vendor": "arris",
        "version": null
      },
      {
        "model": "dg860a ts0705125d 031115 na",
        "scope": null,
        "trust": 0.3,
        "vendor": "arris",
        "version": null
      },
      {
        "model": "dg860a ts0705125 062314 na.",
        "scope": null,
        "trust": 0.3,
        "vendor": "arris",
        "version": null
      },
      {
        "model": "dg860a ts0703135 112211 na.",
        "scope": null,
        "trust": 0.3,
        "vendor": "arris",
        "version": null
      },
      {
        "model": "dg860a ts0703128 100611 na.",
        "scope": null,
        "trust": 0.3,
        "vendor": "arris",
        "version": null
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#419568"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2015-07833"
      },
      {
        "db": "BID",
        "id": "77674"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-006007"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201511-382"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-7289"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "cpe_match": [
              {
                "cpe22Uri": "cpe:/h:arris:dg860a",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:arris:tg862a",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:arris:tg862g",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-006007"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Bernardo Rodrigues",
    "sources": [
      {
        "db": "BID",
        "id": "77674"
      }
    ],
    "trust": 0.3
  },
  "cve": "CVE-2015-7289",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "nvd@nist.gov",
            "availabilityImpact": "COMPLETE",
            "baseScore": 9.3,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 8.6,
            "id": "CVE-2015-7289",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 1.8,
            "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "CNVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 9.3,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 8.6,
            "id": "CNVD-2015-07833",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 0.6,
            "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "COMPLETE",
            "baseScore": 9.3,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 8.6,
            "id": "VHN-85250",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 0.1,
            "vectorString": "AV:N/AC:M/AU:N/C:C/I:C/A:C",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "nvd@nist.gov",
            "id": "CVE-2015-7289",
            "trust": 1.0,
            "value": "HIGH"
          },
          {
            "author": "NVD",
            "id": "CVE-2015-7289",
            "trust": 0.8,
            "value": "High"
          },
          {
            "author": "CNVD",
            "id": "CNVD-2015-07833",
            "trust": 0.6,
            "value": "HIGH"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201511-382",
            "trust": 0.6,
            "value": "CRITICAL"
          },
          {
            "author": "VULHUB",
            "id": "VHN-85250",
            "trust": 0.1,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2015-07833"
      },
      {
        "db": "VULHUB",
        "id": "VHN-85250"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-006007"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201511-382"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-7289"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Arris DG860A, TG862A, and TG862G devices with firmware TS0703128_100611 through TS0705125D_031115 have a hardcoded administrator password derived from a serial number, which makes it easier for remote attackers to obtain access via the web management interface, SSH, TELNET, or SNMP. Multiple models of ARRIS cable modems contain multiple, deterministically generated backdoor passwords, as well as multiple cross-site scripting (XSS) and cross-site request forgery (CSRF) vulnerabilities. Arris DG860A, TG862A and TG862G are modem products of the American Arris Group. A remote attacker can exploit the vulnerability to gain access through the web administration interface. A cross-site scripting vulnerability\n2. A cross-site request-forgery vulnerability\n3. Multiple security-bypass vulnerabilities\nAn attacker can exploit these issues to bypass security restrictions and perform unauthorized actions, execute attacker-supplied HTML or  JavaScript code in the context of the affected site or to steal  cookie-based authentication credentials. This may aid in further attacks. The following products and versions are affected: Arris DG860A, TG862A, TG862G using firmware versions TS0703128_100611 to TS0705125D_031115",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2015-7289"
      },
      {
        "db": "CERT/CC",
        "id": "VU#419568"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-006007"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2015-07833"
      },
      {
        "db": "BID",
        "id": "77674"
      },
      {
        "db": "VULHUB",
        "id": "VHN-85250"
      }
    ],
    "trust": 3.24
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "CERT/CC",
        "id": "VU#419568",
        "trust": 4.2
      },
      {
        "db": "NVD",
        "id": "CVE-2015-7289",
        "trust": 3.4
      },
      {
        "db": "EXPLOIT-DB",
        "id": "29131",
        "trust": 0.8
      },
      {
        "db": "JVN",
        "id": "JVNVU90662356",
        "trust": 0.8
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-006007",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201511-382",
        "trust": 0.7
      },
      {
        "db": "CNVD",
        "id": "CNVD-2015-07833",
        "trust": 0.6
      },
      {
        "db": "BID",
        "id": "77674",
        "trust": 0.3
      },
      {
        "db": "VULHUB",
        "id": "VHN-85250",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#419568"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2015-07833"
      },
      {
        "db": "VULHUB",
        "id": "VHN-85250"
      },
      {
        "db": "BID",
        "id": "77674"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-006007"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201511-382"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-7289"
      }
    ]
  },
  "id": "VAR-201511-0053",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2015-07833"
      },
      {
        "db": "VULHUB",
        "id": "VHN-85250"
      }
    ],
    "trust": 1.4555555666666666
  },
  "iot_taxonomy": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "category": [
          "Network device"
        ],
        "sub_category": null,
        "trust": 0.6
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2015-07833"
      }
    ]
  },
  "last_update_date": "2025-04-13T23:18:02.551000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "Top Page",
        "trust": 0.8,
        "url": "http://www.arris.com/"
      },
      {
        "title": "TG862G/CT",
        "trust": 0.8,
        "url": "http://arris.force.com/consumers/ConsumerProductDetail?p=a0ha000000GOZ3yAAH\u0026c=Touchstone%20Modems%20and%20Gateways"
      },
      {
        "title": "Patches for multiple Arris device trust management vulnerabilities",
        "trust": 0.6,
        "url": "https://www.cnvd.org.cn/patchInfo/show/67321"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2015-07833"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-006007"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-255",
        "trust": 1.9
      },
      {
        "problemtype": "CWE-Other",
        "trust": 0.8
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-85250"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-006007"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-7289"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 3.4,
        "url": "http://www.kb.cert.org/vuls/id/419568"
      },
      {
        "trust": 0.8,
        "url": "https://w00tsec.blogspot.com/2015/11/arris-cable-modem-has-backdoor-in.html"
      },
      {
        "trust": 0.8,
        "url": "https://github.com/borfast/arrispwgen"
      },
      {
        "trust": 0.8,
        "url": "https://www.shodan.io/search?query=arris+port%3a%2223%22"
      },
      {
        "trust": 0.8,
        "url": "https://www.shodan.io/search?query=ssh-2.0-arris_0.50"
      },
      {
        "trust": 0.8,
        "url": "https://www.shodan.io/search?query=net-dk"
      },
      {
        "trust": 0.8,
        "url": "http://www.theregister.co.uk/2015/11/20/arris_modem_backdoor/"
      },
      {
        "trust": 0.8,
        "url": "http://www.cert.br/docs/palestras/certbr-tcfirst2015.pdf"
      },
      {
        "trust": 0.8,
        "url": "https://www.exploit-db.com/exploits/29131/"
      },
      {
        "trust": 0.8,
        "url": "http://docsis.org/node/1575"
      },
      {
        "trust": 0.8,
        "url": "http://cwe.mitre.org/data/definitions/255.html"
      },
      {
        "trust": 0.8,
        "url": "http://cwe.mitre.org/data/definitions/259.html"
      },
      {
        "trust": 0.8,
        "url": "http://cwe.mitre.org/data/definitions/80.html"
      },
      {
        "trust": 0.8,
        "url": "http://cwe.mitre.org/data/definitions/352.html"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-7289"
      },
      {
        "trust": 0.8,
        "url": "http://jvn.jp/vu/jvnvu90662356/index.html"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-7289"
      },
      {
        "trust": 0.3,
        "url": "http://www.arrisi.com/"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#419568"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2015-07833"
      },
      {
        "db": "VULHUB",
        "id": "VHN-85250"
      },
      {
        "db": "BID",
        "id": "77674"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-006007"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201511-382"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-7289"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "CERT/CC",
        "id": "VU#419568"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2015-07833"
      },
      {
        "db": "VULHUB",
        "id": "VHN-85250"
      },
      {
        "db": "BID",
        "id": "77674"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-006007"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201511-382"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-7289"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2015-11-20T00:00:00",
        "db": "CERT/CC",
        "id": "VU#419568"
      },
      {
        "date": "2015-11-27T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2015-07833"
      },
      {
        "date": "2015-11-21T00:00:00",
        "db": "VULHUB",
        "id": "VHN-85250"
      },
      {
        "date": "2015-11-20T00:00:00",
        "db": "BID",
        "id": "77674"
      },
      {
        "date": "2015-11-24T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2015-006007"
      },
      {
        "date": "2015-11-23T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201511-382"
      },
      {
        "date": "2015-11-21T11:59:16.620000",
        "db": "NVD",
        "id": "CVE-2015-7289"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2015-11-23T00:00:00",
        "db": "CERT/CC",
        "id": "VU#419568"
      },
      {
        "date": "2015-11-27T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2015-07833"
      },
      {
        "date": "2015-11-23T00:00:00",
        "db": "VULHUB",
        "id": "VHN-85250"
      },
      {
        "date": "2015-11-20T00:00:00",
        "db": "BID",
        "id": "77674"
      },
      {
        "date": "2015-11-24T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2015-006007"
      },
      {
        "date": "2015-11-27T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201511-382"
      },
      {
        "date": "2025-04-12T10:46:40.837000",
        "db": "NVD",
        "id": "CVE-2015-7289"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201511-382"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "ARRIS cable modems generate passwords deterministically and contain XSS and CSRF vulnerabilities",
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#419568"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "trust management",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201511-382"
      }
    ],
    "trust": 0.6
  }
}

GSD-2015-7289

Vulnerability from gsd - Updated: 2023-12-13 01:20

Details

Aliases

CVE-2015-7289

Aliases

CVE-2015-7289

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2015-7289",
    "description": "Arris DG860A, TG862A, and TG862G devices with firmware TS0703128_100611 through TS0705125D_031115 have a hardcoded administrator password derived from a serial number, which makes it easier for remote attackers to obtain access via the web management interface, SSH, TELNET, or SNMP.",
    "id": "GSD-2015-7289"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2015-7289"
      ],
      "details": "Arris DG860A, TG862A, and TG862G devices with firmware TS0703128_100611 through TS0705125D_031115 have a hardcoded administrator password derived from a serial number, which makes it easier for remote attackers to obtain access via the web management interface, SSH, TELNET, or SNMP.",
      "id": "GSD-2015-7289",
      "modified": "2023-12-13T01:20:01.747563Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cert@cert.org",
        "ID": "CVE-2015-7289",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Arris DG860A, TG862A, and TG862G devices with firmware TS0703128_100611 through TS0705125D_031115 have a hardcoded administrator password derived from a serial number, which makes it easier for remote attackers to obtain access via the web management interface, SSH, TELNET, or SNMP."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "VU#419568",
            "refsource": "CERT-VN",
            "url": "http://www.kb.cert.org/vuls/id/419568"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:arris:na_model_862_gw_mono_firmware:ts0703128_100611:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arris:na_model_862_gw_mono_firmware:ts0703135_112211:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arris:na_model_862_gw_mono_firmware:ts0705125d_031115:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arris:na_model_862_gw_mono_firmware:ts070593c_073013:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arris:na_model_862_gw_mono_firmware:ts0705125_062314:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:arris:dg860a:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:arris:tg862a:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:arris:tg862g:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cert@cert.org",
          "ID": "CVE-2015-7289"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Arris DG860A, TG862A, and TG862G devices with firmware TS0703128_100611 through TS0705125D_031115 have a hardcoded administrator password derived from a serial number, which makes it easier for remote attackers to obtain access via the web management interface, SSH, TELNET, or SNMP."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-255"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "VU#419568",
              "refsource": "CERT-VN",
              "tags": [
                "Third Party Advisory",
                "US Government Resource"
              ],
              "url": "http://www.kb.cert.org/vuls/id/419568"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 9.3,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 10.0,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2015-11-23T16:54Z",
      "publishedDate": "2015-11-21T11:59Z"
    }
  }
}

GHSA-P4GV-2FVR-FJF6

Vulnerability from github – Published: 2022-05-17 04:01 – Updated: 2022-05-17 04:01

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2015-7289"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2015-11-21T11:59:00Z",
    "severity": "HIGH"
  },
  "details": "Arris DG860A, TG862A, and TG862G devices with firmware TS0703128_100611 through TS0705125D_031115 have a hardcoded administrator password derived from a serial number, which makes it easier for remote attackers to obtain access via the web management interface, SSH, TELNET, or SNMP.",
  "id": "GHSA-p4gv-2fvr-fjf6",
  "modified": "2022-05-17T04:01:47Z",
  "published": "2022-05-17T04:01:47Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-7289"
    },
    {
      "type": "WEB",
      "url": "http://www.kb.cert.org/vuls/id/419568"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

CNVD-2015-07833

Vulnerability from cnvd - Published: 2015-11-27

Title

多款Arris设备信任管理漏洞

Description

Arris DG860A、TG862A和TG862G都是美国Arris集团公司的调制解调器产品。多款Arris设备中存在安全漏洞，该漏洞源于程序使用基于序列号的硬编码的密码。远程攻击者可借助Web管理界面利用该漏洞获取访问权限。

Severity

高

Patch Name

多款Arris设备信任管理漏洞的补丁

Patch Description

Arris DG860A、TG862A和TG862G都是美国Arris集团公司的调制解调器产品。多款Arris设备中存在安全漏洞，该漏洞源于程序使用基于序列号的硬编码的密码。远程攻击者可借助Web管理界面利用该漏洞获取访问权限。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

用户可参考如下厂商提供的安全公告获取补丁以修复该漏洞： http://www.kb.cert.org/vuls/id/419568

Reference

http://www.kb.cert.org/vuls/id/419568

Impacted products

Name
['ARRIS DG860A TS0703128_100611至TS0705125D_031115', 'ARRIS TG862A TS0703128_100611至TS0705125D_031115', 'ARRIS TG862G TS0703128_100611至TS0705125D_031115']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2015-7289"
    }
  },
  "description": "Arris DG860A\u3001TG862A\u548cTG862G\u90fd\u662f\u7f8e\u56fdArris\u96c6\u56e2\u516c\u53f8\u7684\u8c03\u5236\u89e3\u8c03\u5668\u4ea7\u54c1\u3002\r\n\r\n\u591a\u6b3eArris\u8bbe\u5907\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u4f7f\u7528\u57fa\u4e8e\u5e8f\u5217\u53f7\u7684\u786c\u7f16\u7801\u7684\u5bc6\u7801\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u501f\u52a9Web\u7ba1\u7406\u754c\u9762\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u8bbf\u95ee\u6743\u9650\u3002",
  "discovererName": "Bernardo Rodrigues",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u5382\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u516c\u544a\u83b7\u53d6\u8865\u4e01\u4ee5\u4fee\u590d\u8be5\u6f0f\u6d1e\uff1a\r\nhttp://www.kb.cert.org/vuls/id/419568",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2015-07833",
  "openTime": "2015-11-27",
  "patchDescription": "Arris DG860A\u3001TG862A\u548cTG862G\u90fd\u662f\u7f8e\u56fdArris\u96c6\u56e2\u516c\u53f8\u7684\u8c03\u5236\u89e3\u8c03\u5668\u4ea7\u54c1\u3002\r\n\r\n\u591a\u6b3eArris\u8bbe\u5907\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u4f7f\u7528\u57fa\u4e8e\u5e8f\u5217\u53f7\u7684\u786c\u7f16\u7801\u7684\u5bc6\u7801\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u501f\u52a9Web\u7ba1\u7406\u754c\u9762\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u8bbf\u95ee\u6743\u9650\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "\u591a\u6b3eArris\u8bbe\u5907\u4fe1\u4efb\u7ba1\u7406\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "ARRIS DG860A TS0703128_100611\u81f3TS0705125D_031115",
      "ARRIS TG862A TS0703128_100611\u81f3TS0705125D_031115",
      "ARRIS TG862G TS0703128_100611\u81f3TS0705125D_031115"
    ]
  },
  "referenceLink": "http://www.kb.cert.org/vuls/id/419568",
  "serverity": "\u9ad8",
  "submitTime": "2015-11-26",
  "title": "\u591a\u6b3eArris\u8bbe\u5907\u4fe1\u4efb\u7ba1\u7406\u6f0f\u6d1e"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2015-7289 (GCVE-0-2015-7289)

FKIE_CVE-2015-7289

VAR-201511-0053

GSD-2015-7289

GHSA-P4GV-2FVR-FJF6

CNVD-2015-07833

Tags

Sightings

Nomenclature