FKIE_CVE-2012-3047

Vulnerability from fkie_nvd - Published: 2013-12-10 19:55 - Updated: 2025-04-11 00:51
Severity ?
Summary
Cross-site scripting (XSS) vulnerability in the web-wizard setup page on Cisco Scientific Atlanta D20 and D30 cable modems allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
References
psirt@cisco.comhttp://tools.cisco.com/security/center/viewAlert.x?alertId=26036Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://tools.cisco.com/security/center/viewAlert.x?alertId=26036Vendor Advisory
Impacted products
Vendor Product Version
cisco scientific_atlanta_dpc\/epc_3208 -
cisco scientific_atlanta_dpc\/epc2100 -
cisco scientific_atlanta_dpc\/epc2202 -
cisco scientific_atlanta_dpc\/epc2203 -
cisco scientific_atlanta_dpc\/epc2325 -
cisco scientific_atlanta_dpc\/epc2425 -
cisco scientific_atlanta_dpc\/epc2434 -
cisco scientific_atlanta_dpc\/epc2505 -
cisco scientific_atlanta_dpc\/epc3010 -
cisco scientific_atlanta_dpc\/epc3212 -
cisco scientific_atlanta_dpc2420 -
cisco scientific_atlanta_dpc3000\/epc3000 -
cisco scientific_atlanta_dpc3008\/epc3008 -
cisco scientific_atlanta_dpc3825 -
cisco scientific_atlanta_dpc3925 -
cisco scientific_atlanta_dpq\/epq2160 -
cisco scientific_atlanta_dpq2202 -
cisco scientific_atlanta_dpq2425 -
cisco scientific_atlanta_dpq3212 -
cisco scientific_atlanta_dpq3925 -
cisco scientific_atlanta_dpr362 -
cisco scientific_atlanta_dpw700 -
cisco scientific_atlanta_dpw730 -
cisco scientific_atlanta_dpw939 -
cisco scientific_atlanta_dpw941 -
cisco scientific_atlanta_dpx\/epx2100 -
cisco scientific_atlanta_dpx\/epx2203 -
cisco scientific_atlanta_dpx\/epx2203c -
cisco scientific_atlanta_dpx100\/120 -
cisco scientific_atlanta_dpx110 -
cisco scientific_atlanta_dpx130 -
cisco scientific_atlanta_dpx213 -
cisco scientific_atlanta_dpx2213 -
cisco scientific_atlanta_epc2420 -
cisco scientific_atlanta_epc3825 -
cisco scientific_atlanta_epc3925 -
cisco scientific_atlanta_wag310g -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpc\\/epc_3208:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1BBD4DD2-7C08-4FBC-954F-88134D39DC1E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpc\\/epc2100:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "25240CAB-2C97-47D5-8832-B10C1D8143D8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpc\\/epc2202:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F663ED66-11B4-4A59-BE29-EC22C861DB84",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpc\\/epc2203:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BFBABB53-373C-48B1-9A3A-361A2FAC9975",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpc\\/epc2325:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "5F0162D4-8430-4534-BB7A-F1B839936745",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpc\\/epc2425:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AC8F5921-CA19-48AF-A046-AA5B41D24CE2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpc\\/epc2434:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "5BFCD786-39E3-4A37-8F34-1696521250C9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpc\\/epc2505:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E7DE6565-BB7B-4886-A636-E764FCFFFEF2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpc\\/epc3010:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FC116C0-0F3B-4AA3-9635-53D1A2CA3077",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpc\\/epc3212:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "31957EA7-6FFB-4F19-92A5-9F3A0461B763",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpc2420:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C8DA83F6-A09E-4CDF-9F9D-12EF6BC5F170",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpc3000\\/epc3000:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BB20E119-55FB-4579-AA61-F444AEE8B668",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpc3008\\/epc3008:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7D69FA8A-376D-4128-BDC2-EE6A9FEB5EF6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpc3825:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "345E6496-38A2-4328-8C97-D146EAC3B110",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpc3925:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "D6D95C3C-85A0-43F7-A3F7-EB8364AF0222",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpq\\/epq2160:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "333A430B-3F5C-462B-A02F-130357B01F66",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpq2202:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E53177C9-6BCC-447F-974E-7DAAA1421BCB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpq2425:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "4ADA1470-3466-4DB6-B64B-5D057C97C8B9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpq3212:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "002BACD9-33A8-4EB7-BCDB-30F03114DF50",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpq3925:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "8DAC08E7-2689-49E6-A034-6C2DC5EB2A49",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpr362:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "8AFF203F-27D7-44D6-B475-0BC1C98377D1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpw700:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EDF09590-EC28-4503-8FF7-FD3028F84925",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpw730:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E8959B68-E4C7-4334-8D46-46FAB770BD68",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpw939:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "5A6A47D5-BECF-4FF1-B748-D5BFB4139D93",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpw941:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9DEFE1C3-C69B-492B-8237-7FB184C9AAC1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpx\\/epx2100:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1E443C76-8A24-45CE-BCC5-C12502C6969D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpx\\/epx2203:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "B038BFF6-1AA7-45F9-9F1F-733D1A548517",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpx\\/epx2203c:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3C014393-9979-48CF-B595-4B8036ED808B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpx100\\/120:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C4B2B8DE-C827-48F8-B8A2-420E4AA81694",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpx110:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "69D3147A-E9D6-4795-97AF-EFC446915393",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpx130:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C1799EFD-48E9-40CB-A78F-D05B11532521",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpx213:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AB32ADB5-ECB4-4A0C-9962-8DD70BD7EBF9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_dpx2213:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "4C650601-CA3F-4309-8E9F-4B66665525C5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_epc2420:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "5A705830-E107-4B0B-A4C5-B1937608D635",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_epc3825:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "342244FC-4AD9-44FF-BF03-A20E3FB706E2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_epc3925:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C1779D10-F4E7-4FFC-9954-B75330A135C1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:scientific_atlanta_wag310g:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "648D9F38-76E4-4468-80F0-079AED4759E4",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Cross-site scripting (XSS) vulnerability in the web-wizard setup page on Cisco Scientific Atlanta D20 and D30 cable modems allows remote attackers to inject arbitrary web script or HTML via unspecified vectors."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad de XSS en la p\u00e1gina de asistencia web-wizard de cables de m\u00f3dem Cisco Scientific Atlanta D20 y D30 permite a atacantes remotos inyectar script web o HTML arbitrario a trav\u00e9s de vectores sin especificar."
    }
  ],
  "id": "CVE-2012-3047",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 4.3,
          "confidentialityImpact": "NONE",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ]
  },
  "published": "2013-12-10T19:55:03.967",
  "references": [
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=26036"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=26036"
    }
  ],
  "sourceIdentifier": "psirt@cisco.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-79"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.