Vulnerability Description
The web server on Cisco DPC3010, DPC3212, DPC3825, DPC3925, DPQ3925, EPC3010, EPC3212, EPC3825, and EPC3925 Wireless Residential Gateway products allows remote attackers to execute arbitrary code via a crafted HTTP request, aka Bug ID CSCup40808.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Dpc3010 | - |
| Cisco | Dpc3212 | - |
| Cisco | Dpc3825 | - |
| Cisco | Dpc3925 | - |
| Cisco | Dpq3925 | - |
| Cisco | Epc3010 | - |
| Cisco | Epc3212 | - |
| Cisco | Epc3825 | - |
| Cisco | Epc3925 | - |
Related Weaknesses (CWE)
References
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/ciscosa-201Vendor Advisory
- http://www.securitytracker.com/id/1030598Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1030599Third Party AdvisoryVDB Entry
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/ciscosa-201Vendor Advisory
- http://www.securitytracker.com/id/1030598Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1030599Third Party AdvisoryVDB Entry
FAQ
What is CVE-2014-3306?
CVE-2014-3306 is a vulnerability with a CVSS score of 10.0 (HIGH). The web server on Cisco DPC3010, DPC3212, DPC3825, DPC3925, DPQ3925, EPC3010, EPC3212, EPC3825, and EPC3925 Wireless Residential Gateway products allows remote attackers to execute arbitrary code via ...
How severe is CVE-2014-3306?
CVE-2014-3306 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2014-3306?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Dpc3010, Cisco Dpc3212, Cisco Dpc3825, Cisco Dpc3925, Cisco Dpq3925.