ГлавнаяУязвимости → CVE-2024-23618
9.6критическая

CVE-2024-23618

Описание

An arbitrary code execution vulnerability exists in Arris SURFboard SGB6950AC2 devices. An unauthenticated attacker can exploit this vulnerability to achieve code execution as root.

Затрагиваемое ПО
Commscope Arris surfboard sbg6950ac2 firmwareCommscope Arris surfboard sbg6950ac2
CVSS
Балл9.6 — критическая
ВекторCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Источники
https://blog.exodusintel.com/2024/01/25/arris-surfboard-sbg6950ac2-arbitrary-command-execution-vulnerability/https://blog.exodusintel.com/2024/01/25/arris-surfboard-sbg6950ac2-arbitrary-command-execution-vulnerability/