Cisco Scientific Atlanta Webstar Dpc2100R2 vulnerabilities
3 known vulnerabilities affecting cisco/scientific_atlanta_webstar_dpc2100r2.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2010-2025P3MEDIUMCVSS 6.8PoCv2.0.2r1256-0603032010-05-26
CVE-2010-2025 [MEDIUM] CWE-352 CVE-2010-2025: Multiple cross-site request forgery (CSRF) vulnerabilities in the web interface on the Cisco Scienti
Multiple cross-site request forgery (CSRF) vulnerabilities in the web interface on the Cisco Scientific Atlanta WebSTAR DPC2100R2 cable modem with firmware 2.0.2r1256-060303 allow remote attackers to hijack the authentication of administrators for requests that (1) reset the modem, (2) erase the firmware, (3) change the administrative password, (4) in
nvd
CVE-2010-2026P3MEDIUMCVSS 6.4v2.0.2r1256-0603032010-05-26
CVE-2010-2026 [MEDIUM] CWE-287 CVE-2010-2026: The web interface on the Cisco Scientific Atlanta WebSTAR DPC2100R2 cable modem with firmware 2.0.2r
The web interface on the Cisco Scientific Atlanta WebSTAR DPC2100R2 cable modem with firmware 2.0.2r1256-060303 allows remote attackers to bypass authentication, and reset the modem or replace the firmware, via a direct request to an unspecified page.
nvd
CVE-2010-2082P4MEDIUMCVSS 5.0v2.0.2r1256-0603032010-05-26
CVE-2010-2082 [MEDIUM] CWE-255 CVE-2010-2082: The web interface on the Cisco Scientific Atlanta WebSTAR DPC2100R2 cable modem with firmware 2.0.2r
The web interface on the Cisco Scientific Atlanta WebSTAR DPC2100R2 cable modem with firmware 2.0.2r1256-060303 has a default administrative password (aka SAPassword) of W2402, which makes it easier for remote attackers to obtain privileged access.
nvd