Commscope: >> Arris Surfboard Sb8200 Firmware Security Vulnerabilities
The password change utility for the Arris SurfBoard SB8200 can have safety measures bypassed that allow any logged-in user to change the administrator password.
CVSS Score
7.1
EPSS Score
0.001
Published
2021-11-09
The administration web interface for the Arris Surfboard SB8200 lacks any protections against cross-site request forgery attacks. This means that an attacker could make configuration changes (such as changing the administrative password) without the consent of the user.
CVSS Score
8.8
EPSS Score
0.001
Published
2021-10-21