Remote Authentication Bypass in Cisco Scientific Atlanta Cable Modem
CVE-2010-2026

Currently unrated

Key Information:

Vendor: Cisco
Status: Scientific Atlanta Webstar Dpc2100r2
Vendor: CVE Published:; 26 May 2010

What is CVE-2010-2026?

The Cisco Scientific Atlanta WebSTAR DPC2100R2 cable modem is susceptible to a significant security flaw that enables remote attackers to bypass authentication mechanisms. This vulnerability allows unauthorized users to access an undisclosed interface directly, granting them the ability to reset the modem or alter its firmware. Users and network administrators should take immediate measures to secure the device and prevent potential exploitation by updating the firmware and applying any available security patches.

References

http://archives.neohapsis.com/archives/fulldisclosure/201...

mailing-listx_refsource_FULLDISC

http://www.securityfocus.com/bid/40346

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
May 26, 2010