Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2017-10793

The AT&T U-verse 9.2.2h0d83 firmware for the Arris NVG589, NVG599, and unspecified other devices, when IP Passthrough mode is not used, configures an sbdc.ha WAN TCP service on port 61001 with the bdctest account and the bdctest password, which allows remote attackers to obtain sensitive information (such as the Wi-Fi password) by leveraging knowledge of a hardware identifier, related to the Bulk Data Collection (BDC) mechanism defined in Broadband Forum technical reports.

Published

2017-09-03T19:29:00.207

Last Modified

2025-04-20T01:37:25.860

Status

Deferred

Source

[email protected]

Severity

CVSSv3.0: 8.1 (HIGH)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:P/I:N/A:N

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: NONE
Availability Impact: NONE

Exploitability Score

8.6

Impact Score

2.9

Weaknesses

Type: Primary
CWE-200

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	att	u-verse_firmware	9.2.2h0d83	Yes
Hardware	commscope	arris_nvg589	-	No
Hardware	commscope	arris_nvg599	-	No

References

http://www.securityfocus.com/bid/100585 Third Party Advisory, VDB Entry ([email protected])
https://threatpost.com/bugs-in-arris-modems-distributed-by-att-vulnerable-to-trivial-attacks/127753/ Third Party Advisory ([email protected])
https://www.nomotion.net/blog/sharknatto/ Exploit, Mitigation, Technical Description, Third Party Advisory ([email protected])
http://www.securityfocus.com/bid/100585 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
https://threatpost.com/bugs-in-arris-modems-distributed-by-att-vulnerable-to-trivial-attacks/127753/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.nomotion.net/blog/sharknatto/ Exploit, Mitigation, Technical Description, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)