← Back

CVE-2014-3306

nvd nist
Published: Jul 18, 2014Modified: May 6, 2026

JSON object

Loading...
10.0
Vector
AV:N/AC:L/Au:N/C:C/I:C/A:C
Exploitability: 10.0 / Impact: 10.0
Source: NVD

Description

The web server on Cisco DPC3010, DPC3212, DPC3825, DPC3925, DPQ3925, EPC3010, EPC3212, EPC3825, and EPC3925 Wireless Residential Gateway products allows remote attackers to execute arbitrary code via a crafted HTTP request, aka Bug ID CSCup40808.

Affected (9)

Cisco
9 products
Dpc3010
Dpc3212
Dpc3825
Dpc3925
Dpq3925
Epc3010
Epc3212
Epc3825
Epc3925
Configuration A
9 vulnerable
Vulnerable SoftwareAffected Versions
Dpc3010
All versions
Dpc3212
All versions
Dpc3825
All versions
Dpc3925
All versions
Dpq3925
All versions
Epc3010
All versions
Epc3212
All versions
Epc3825
All versions
Epc3925
All versions

Related CWEs

CWE-20
Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (6)

Source: psirt@cisco.com
Vendor Advisory
Source: psirt@cisco.com
Third Party AdvisoryVDB Entry
Source: psirt@cisco.com
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry

Timeline

No history available yet.