Skip to main content

Vap2500 Firmware

6 CVEs product

Monthly

CVE-2024-5196 MEDIUM This Month

A vulnerability classified as critical has been found in Arris VAP2500 08.50. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP Command Injection Vap2500 Firmware
NVD VulDB GitHub
CVSS 4.0
5.1
EPSS
4.2%
CVE-2024-5195 MEDIUM This Month

A vulnerability was found in Arris VAP2500 08.50. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP Command Injection Vap2500 Firmware
NVD GitHub VulDB
CVSS 4.0
5.1
EPSS
4.2%
CVE-2024-5194 MEDIUM This Month

A vulnerability was found in Arris VAP2500 08.50. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP Command Injection Vap2500 Firmware
NVD GitHub VulDB
CVSS 4.0
5.1
EPSS
3.6%
CVE-2014-8425 HIGH POC THREAT Act Now

The management portal in ARRIS VAP2500 before FW08.41 allows remote attackers to obtain credentials by reading the configuration files. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 12.5%.

Information Disclosure Vap2500 Firmware
NVD Exploit-DB
CVSS 2.0
7.8
EPSS
12.5%
CVE-2014-8424 HIGH POC THREAT Act Now

ARRIS VAP2500 before FW08.41 does not properly validate passwords, which allows remote attackers to bypass authentication. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 53.5%.

Authentication Bypass Vap2500 Firmware
NVD Exploit-DB
CVSS 2.0
7.8
EPSS
53.5%
Threat
4.7
CVE-2014-8423 CRITICAL POC THREAT Emergency

Unspecified vulnerability in the management portal in ARRIS VAP2500 before FW08.41 allows remote attackers to execute arbitrary commands via unknown vectors. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 41.7%.

Information Disclosure Vap2500 Firmware
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
41.7%
Threat
4.8
EPSS 4% CVSS 5.1
MEDIUM This Month

A vulnerability classified as critical has been found in Arris VAP2500 08.50. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP Command Injection Vap2500 Firmware
NVD VulDB GitHub
EPSS 4% CVSS 5.1
MEDIUM This Month

A vulnerability was found in Arris VAP2500 08.50. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP Command Injection Vap2500 Firmware
NVD GitHub VulDB
EPSS 4% CVSS 5.1
MEDIUM This Month

A vulnerability was found in Arris VAP2500 08.50. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP Command Injection Vap2500 Firmware
NVD GitHub VulDB
EPSS 12% CVSS 7.8
HIGH POC THREAT Act Now

The management portal in ARRIS VAP2500 before FW08.41 allows remote attackers to obtain credentials by reading the configuration files. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 12.5%.

Information Disclosure Vap2500 Firmware
NVD Exploit-DB
EPSS 54% 4.7 CVSS 7.8
HIGH POC THREAT Act Now

ARRIS VAP2500 before FW08.41 does not properly validate passwords, which allows remote attackers to bypass authentication. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 53.5%.

Authentication Bypass Vap2500 Firmware
NVD Exploit-DB
EPSS 42% 4.8 CVSS 10.0
CRITICAL POC THREAT Emergency

Unspecified vulnerability in the management portal in ARRIS VAP2500 before FW08.41 allows remote attackers to execute arbitrary commands via unknown vectors. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 41.7%.

Information Disclosure Vap2500 Firmware
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy